Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands Safe and trustworthy access in a working environment: the MoodlePKI project

Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands

Safe and trustworthy access in a working environment:

the MoodlePKI project

Pilar Lasala & Leo CatalinasUniversity of Zaragoza

Safe and trustworthy access in a working environment:

the MoodlePKI project

Pilar Lasala & Leo CatalinasUniversity of Zaragoza


When users access to a working environment:

The system needs to know who is accessing

The user needs to know where he/she is accessing

The user should have an identification system so that the server allows him/her the access

The server should have a certification system so that the user is sure where he/she is accessing

Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project

Working environments



LEFIS working environment

The server will let anyone navigate through its pages, but it will only let the LEFIS members access to the restricted areas

The LEFIS member will know that he/she is really working with the LEFIS server

The LEFIS documents will be digitally signed to assure their integrity and legitimacy

http://images.google.es/imgres?imgurl=http://www.dialogica.com.ar/astrolabio/archivos/imagenes/Hacker.jpg&imgrefurl=http://www.dialogica.com.ar/astrolabio/archivos/educacion/index.php&h=217&w=300&sz=21&tbnid=fNvYfvRDTPsfHM:&tbnh=80&tbnw=111&hl=es&start=207&prev=/images%3Fq%3Dhacker%26start%3D200%26svnum%3D10%26hl%3Des%26lr%3D%26sa%3DN



Username:Password:

Digital certificate




Digital certificate


??




Digital signature

0 I I I 0 0 0 I I I 0 0 I 0 I 0 0 I I 0 0 0 I 0 0 I 0 I

?

?



MoodlePKI Project

+

Digital certificate

Digital signature

0 I I I 0 0 0 I I I 0 0 I 0 I 0 0 I I 0 0 0 I 0 0 I 0 I

Digital certificate

Modular Object-Oriented Dynamic Learning Environment Is a ‘CMS’ (course management system) Open Source software package

WG Activities Support User’s communication Dynamic contents Workshops Assemblies ……

Public Key Technologies to increase security

Our own PKI with Open Source Software Secure and identified web access,

signed documents and signed e-mail



LEFIS PKI design

APTICECertification

Authority

LEFISRegistrationAuthorities

TheLEFIS

PKI

signs

delegates

manages

Lays Trust Base

Used

LEFISSubordinatedCertification

Authority

Hierarchical

Capable of recognize other PKIs Permits building multiple PKIs

Cross Certification between PKIs

Trust based in APTICE CA

APTICE CA

LEFISPKI

ORG1PKI ORG2

PKI

Lays Trust Base

Trust

Trust Trust



How to get a LEFIS Certificate?

http://pki.lefis.org (PKI Sign up option in the left menu)

LEFIS_MAN_EN_ENROLL_LEFIS_PKI.pdf

MANUALMANUALCSR

CSRCertificate signing request

More informationMore information

http://pki.lefis.org



What does the user get with a LEFIS Certificate?

Identified access to LEFIS Web resources

Documents and e-mail digital signature

Users can use public/private keys to sing and/or encrypt documents in their own computers (if their are interested)

www.lefis.org