• Home

  • Documents

  • Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman...
11
Decentralized Certificate Authority Bargav Jayaraman Hannah Li 1

Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

  • Upload
    others

  • View
    23

  • Download
    0

Embed Size (px)

Citation preview

Page 1: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Decentralized Certificate Authority

Bargav JayaramanHannah Li

1

Page 2: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Review - Creating a Certificate

Identity

Ownership

class/type of certificate

With private key

2

example.com Certificate Authority

Page 3: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Motivation

3

2011 Comodo and DigiNotar

The certificates are only as trustworthy as the weakest CA...

OR

Page 4: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Background - Digital Signature Algorithm (DSA)

4

ECDSA Signature Algorithm Random Number

k

Private Key

d

Hash(message)

Public Key qDigital Signature

(r,s)

Page 5: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Background - Elliptic Curve DSA

5

ECDSA Signature Algorithm

Parameters = (p, b, G, n, h)

Public Key: Q = d * G

Signature: (x, y) = k * Gr = x mod n

s = k-1(Hash(m) + rd)

Sample Curve

d= CA private keyk = Random numberm = info to be signed

Page 6: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Background - Secure Multiparty Computation

6

Input: X Input: Y

Output: f(X, Y)

Computation

Alice Bob

Alice generates the Circuit Bob evaluates the Circuit

Page 7: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Framework ==> OblivC + Absentminded Crypto

7

Generic Computation

obliv int x, y, z;

feedOblivInt(&x, io->x, 1);feedOblivInt(&y, io->y, 2);

Z = x + y;

revealOblivInt(&io->z, z, 0);

Absentminded Crypto provides ‘big number’ arithmetic over OblivC!

Use obig keyword for big numbers..

Page 8: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Decentralized CA using MPC

8

MPC

ECDSA Signature Algorithm

Certificate Signing Request

Certificate

CA Organization

example.com

Page 9: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

MPC

Implementation in C

99

ECDSA Signature Algorithm(Secp192k1 192-bit EC parameters)

Random Number k(Generated via C’s

GMP library)

Private Key d(Generated via C’s

GMP library)

Hash(message)(SHA256 of template

TBSCertificate)

Public Key qDigital Signature (r,s)

To Be Signed Certificate

Page 10: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Experiments3-4 hours to perform certificate signing using ‘secp192k1’ elliptic curve.

Computation Bottleneck: Curve Point-multiplication!

10

pointMultiplication(G, k): N ← G Q ← 0 for i from 0 to m do if ki = 1 then Q ← pointAdd(Q, N) N ← pointDouble(N) return Q

pointAdd(P, Q): pointDouble(P):

Signature: (x, y) = k * Gr = x mod n

s = k-1(Hash(m) + rd)

Page 11: Decentralized Certificate Authority - Bargav Jayaraman · Certificate Authority Bargav Jayaraman Hannah Li 1. Review - Creating a Certificate Identity Ownership class/type of certificate

Conclusion

Decentralized CA is feasible in practice

11

Certificate Signing takes around 3-4 hours, which can be optimized

Deployment in open source tool OpenSSL


Evaluation of Early Childhood Coaching Implementation in ...r2ed.unl.edu/...5_Jayaraman_Knoche_Marvin_Bainter.pdf · Gayatri Jayaraman, Lisa Knoche, Christine Marvin, & Sue Bainter

Evaluation of Early Childhood Coaching Implementation in ...r2ed.unl.edu/...5_Jayaraman_Knoche_Marvin_Bainter.pdf · Gayatri Jayaraman, Lisa Knoche, Christine Marvin, & Sue Bainter

Documents
Computer Literacy Instructional Resources for ELLs Neela Jayaraman & Heather Tatton-Harris (in absentia) November 14, 2014 teamcomplit@gmail.com

Computer Literacy Instructional Resources for ELLs Neela Jayaraman & Heather Tatton-Harris (in absentia) November 14, 2014 [email protected]

Documents
Material Selection and Production Methods Robert Love, Venkat Jayaraman July 8, 2008 SSTP Seminar – Lecture 5

Material Selection and Production Methods Robert Love, Venkat Jayaraman July 8, 2008 SSTP Seminar – Lecture 5

Documents
Jayaraman J. Thiagarajan Deepta Rajan Prasanna …Understanding Behavior of Clinical Models under Domain Shifts Jayaraman J. Thiagarajan Lawrence Livermore National Labs jjayaram@llnl.gov

Jayaraman J. Thiagarajan Deepta Rajan Prasanna …Understanding Behavior of Clinical Models under Domain Shifts Jayaraman J. Thiagarajan Lawrence Livermore National Labs [email protected]

Documents
Farewell to Dr. K. Jayaraman - fao.orgcombined issue, we focus on Conference 2013 successfully visible among the teak community by Farewell to Dr. K. Jayaraman Dr. P.K. Thulasidas

Farewell to Dr. K. Jayaraman - fao.orgcombined issue, we focus on Conference 2013 successfully visible among the teak community by Farewell to Dr. K. Jayaraman Dr. P.K. Thulasidas

Documents
Zodiacal Cloud: The Local Circumstellar Disk Sumita Jayaraman

Zodiacal Cloud: The Local Circumstellar Disk Sumita Jayaraman

Documents
Digital Image Processing_S. Jayaraman, S. Esakkirajan and T. Veerakumar

Digital Image Processing_S. Jayaraman, S. Esakkirajan and T. Veerakumar

Documents
Evaluating Di erentially Private Machine Learning in Practiceevans/pubs/usenix2019/evaluatingdp.pdf · Evaluating Di erentially Private Machine Learning in Practice Bargav Jayaraman

Evaluating Di erentially Private Machine Learning in Practiceevans/pubs/usenix2019/evaluatingdp.pdf · Evaluating Di erentially Private Machine Learning in Practice Bargav Jayaraman

Documents
Sudarsan Jayaraman - Open information security management maturity model

Sudarsan Jayaraman - Open information security management maturity model

Documents
How Things are Designed and How Things Move Robert Love, Venkat Jayaraman June 26, 2008 SSTP Seminar – Lecture 3

How Things are Designed and How Things Move Robert Love, Venkat Jayaraman June 26, 2008 SSTP Seminar – Lecture 3

Documents
Speech by Dr. Jayaraman on water related technologies in Technology Vision 2035 event on 22 May

Speech by Dr. Jayaraman on water related technologies in Technology Vision 2035 event on 22 May

Technology
SIVAJI GANESAN 01. Desam Gnanam Film/Album: Parasakthi Artiste: C.S. Jayaraman 02. Kaa Kaa Kaa Film/Album: Parasakthi Artiste: C.S. Jayaraman 03. Ambigaiye Eswariye

SIVAJI GANESAN 01. Desam Gnanam Film/Album: Parasakthi Artiste: C.S. Jayaraman 02. Kaa Kaa Kaa Film/Album: Parasakthi Artiste: C.S. Jayaraman 03. Ambigaiye Eswariye

Documents
Introduction To Ad Hoc Networks and Routing Protocols Presented By : Karthik Samudram Jayaraman

Introduction To Ad Hoc Networks and Routing Protocols Presented By : Karthik Samudram Jayaraman

Documents
Determinants and Consequences of Proxy Voting by Mutual Funds on Shareholder Proposals Rasha Ashraf Narayanan Jayaraman December 13, 2006

Determinants and Consequences of Proxy Voting by Mutual Funds on Shareholder Proposals Rasha Ashraf Narayanan Jayaraman December 13, 2006

Documents
Pallavi Tambay, Yang Zhang, Prof. Bharat Jayaraman Compositional specification of structure objects Declarative specification of behavior constraints

Pallavi Tambay, Yang Zhang, Prof. Bharat Jayaraman Compositional specification of structure objects Declarative specification of behavior constraints

Documents
MAKING COMPUTER LITERACY MEANINGFUL Neela Jayaraman ( April 4, 2014 MCAE Network Conference

MAKING COMPUTER LITERACY MEANINGFUL Neela Jayaraman ( April 4, 2014 MCAE Network Conference

Documents
MAKING COMPUTER LITERACY MEANINGFUL Neela Jayaraman Heather Tatton-Harris

MAKING COMPUTER LITERACY MEANINGFUL Neela Jayaraman Heather Tatton-Harris

Documents
THE DIAMOND ANVIL CELL AND HIGH PRESSURE RESEARCH … · THE DIAMOND ANVIL CELL AND HIGH PRESSURE RESEARCH A. Jayaraman To cite this version: A. Jayaraman. THE DIAMOND ANVIL CELL

THE DIAMOND ANVIL CELL AND HIGH PRESSURE RESEARCH … · THE DIAMOND ANVIL CELL AND HIGH PRESSURE RESEARCH A. Jayaraman To cite this version: A. Jayaraman. THE DIAMOND ANVIL CELL

Documents
Radar And Navigational Aids Jayaraman (1053) Kaushik (1059) Ikram (3009) Vignesh (3010)

Radar And Navigational Aids Jayaraman (1053) Kaushik (1059) Ikram (3009) Vignesh (3010)

Documents
Wenliang (Kevin) Du Associate Professor Department of Electrical Engineering & Computer Science Syracuse University Joint work with Dr. Karthick Jayaraman,

Wenliang (Kevin) Du Associate Professor Department of Electrical Engineering & Computer Science Syracuse University Joint work with Dr. Karthick Jayaraman,

Documents
GENERAL ARTICLE Jacques Monod and theAdvent of the Age of ... · Jacques Monod and theAdvent of the Age of Operons R Jayaraman R Jayaraman is an Emeritus Professor of Molecular Biology

GENERAL ARTICLE Jacques Monod and theAdvent of the Age of ... · Jacques Monod and theAdvent of the Age of Operons R Jayaraman R Jayaraman is an Emeritus Professor of Molecular Biology

Documents
Evaluating Differentially Private Machine Learning in Practice · Evaluating Di erentially Private Machine Learning in Practice Bargav Jayaraman and David Evans Department of Computer

Evaluating Differentially Private Machine Learning in Practice · Evaluating Di erentially Private Machine Learning in Practice Bargav Jayaraman and David Evans Department of Computer

Documents
A Contrarian World Lalgudi Jayaraman and Lakshmi Devnath Virtuoso Performer and Mediocre Biographer

A Contrarian World Lalgudi Jayaraman and Lakshmi Devnath Virtuoso Performer and Mediocre Biographer

Documents
PANA Framework Prakash Jayaraman, Rafa Marin Lopez, Yoshihiro Ohba, Mohan Parthasarathy, Alper Yegin IETF 59

PANA Framework Prakash Jayaraman, Rafa Marin Lopez, Yoshihiro Ohba, Mohan Parthasarathy, Alper Yegin IETF 59

Documents
BSW of Certificate · Certificate of BSW Certificate of BSW Certificate . Certificate of BSW Certificate of BSW Certificate . Certificate of BSW Certificate of BSW Certificate

BSW of Certificate · Certificate of BSW Certificate of BSW Certificate . Certificate of BSW Certificate of BSW Certificate . Certificate of BSW Certificate of BSW Certificate

Documents
Regional Economic Integration in the Pacific: An Empirical Study T.K. Jayaraman, Huay-Huay Lee and Hock-Ann Lee

Regional Economic Integration in the Pacific: An Empirical Study T.K. Jayaraman, Huay-Huay Lee and Hock-Ann Lee

Documents
Things You Need In Your Insanely Great Pitch Rajiv Jayaraman 10

Things You Need In Your Insanely Great Pitch Rajiv Jayaraman 10

Documents
Knowledge Management @ Accenture Team 3 Katia ArrusJonathan Hayes Cristian OrellanaJay Bashucky Suresh Jayaraman

Knowledge Management @ Accenture Team 3 Katia ArrusJonathan Hayes Cristian OrellanaJay Bashucky Suresh Jayaraman

Documents
Karthik Jayaraman Thesis - UMD

Karthik Jayaraman Thesis - UMD

Documents
RBAC-Capability Project Design Session II Zutao Zhu Derived from Karthick Jayaraman

RBAC-Capability Project Design Session II Zutao Zhu Derived from Karthick Jayaraman

Documents