Upload
russell-bishop
View
213
Download
0
Embed Size (px)
Citation preview
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment:
the MoodlePKI project
Pilar Lasala & Leo CatalinasUniversity of Zaragoza
Safe and trustworthy access in a working environment:
the MoodlePKI project
Pilar Lasala & Leo CatalinasUniversity of Zaragoza
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
When users access to a working environment:
The system needs to know who is accessing
The user needs to know where he/she is accessing
The user should have an identification system so that the server allows him/her the access
The server should have a certification system so that the user is sure where he/she is accessing
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
Working environments
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
LEFIS working environment
The server will let anyone navigate through its pages, but it will only let the LEFIS members access to the restricted areas
The LEFIS member will know that he/she is really working with the LEFIS server
The LEFIS documents will be digitally signed to assure their integrity and legitimacy
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
Username:Password:
Digital certificate
LEFIS working environment
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
Digital certificate
LEFIS working environment
??
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
LEFIS working environment
Digital signature
0 I I I 0 0 0 I I I 0 0 I 0 I 0 0 I I 0 0 0 I 0 0 I 0 I
?
?
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
MoodlePKI Project
+
Digital certificate
Digital signature
0 I I I 0 0 0 I I I 0 0 I 0 I 0 0 I I 0 0 0 I 0 0 I 0 I
Digital certificate
Modular Object-Oriented Dynamic Learning Environment Is a ‘CMS’ (course management system) Open Source software package
WG Activities Support User’s communication Dynamic contents Workshops Assemblies ……
Public Key Technologies to increase security
Our own PKI with Open Source Software Secure and identified web access,
signed documents and signed e-mail
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
LEFIS PKI design
APTICECertification
Authority
LEFISRegistrationAuthorities
TheLEFIS
PKI
signs
delegates
manages
Lays Trust Base
Used
LEFISSubordinatedCertification
Authority
Hierarchical
Capable of recognize other PKIs Permits building multiple PKIs
Cross Certification between PKIs
Trust based in APTICE CA
APTICE CA
LEFISPKI
ORG1PKI ORG2
PKI
Lays Trust Base
Trust
Trust Trust
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
How to get a LEFIS Certificate?
http://pki.lefis.org (PKI Sign up option in the left menu)
LEFIS_MAN_EN_ENROLL_LEFIS_PKI.pdf
MANUALMANUALCSR
CSRCertificate signing request
More informationMore information
http://pki.lefis.org
Monitoring and Supervision Seminar 15 June 2006, Rotterdam, The Netherlands
Safe and trustworthy access in a working environment: the MoodlePKI projectSafe and trustworthy access in a working environment: the MoodlePKI project
What does the user get with a LEFIS Certificate?
Identified access to LEFIS Web resources
Documents and e-mail digital signature
Users can use public/private keys to sing and/or encrypt documents in their own computers (if their are interested)
www.lefis.org