Lesson 6

Question 1

PKI

Answer 1

• Public key infrastructure (PKI) validates the identity of the owner of a public
key
• Public key is wrapped in a digital certificate signed by a certificate authority
(CA)
• Sender and recipient must both trust the CA

Question 2

Single CA

Answer 2

In this simple model, a single CA issues certificates to users; users trust certificates
issued by that CA and no other.

The problem with this approach is that the single CA
server is very exposed. If it is compromised, the whole PKI collapses.

Question 3

• Hierarchical/chain of trust

Answer 3

Root CA (or Single CA)
• Intermediate CAs
• Leaf certificates

The Root CA is still the single point of failure. If the root is damaged or compromised, the whole structure collapses.
To mitigate against this, however, the root server can be taken offline, as most of the
regular CA activities are handled by the intermediate CA servers.

Question 4

Registration

Answer 4

Registration is the process by which end users create an account with the CA and
become authorized to request certificates. The exact processes by which users are
authorized and their identity proven are determined by the CA implementation.

Question 5

CSR

Answer 5

• Client generates key pair and sends public key to CA with CSR
• CA performs subject identity checks
• CA signs and issues certificate

Question 6

REgistration Authority (RA)

Answer 6

The registration function may be delegated by the CA to one or more registration
authorities (RAs). These entities complete identity checking and submit CSRs on
behalf of end users, but they do not actually sign or issue certificates.

Question 7

Digital Certificate

Answer 7

•Essentially a wapper for the subject’s public key
Contains subject’s public key
• Information identifying the subject
plus usage and validity

• Digital certificate standards
•    X.509 Public Key Infrastructure 
(PKIX)
•    PKCS (Public Key Cryptography 
Standards)

Question 8

Digital Certificate Dandards

Answer 8

• Digital certificate standards
•    X.509 Public Key Infrastructure 
(PKIX)
•    PKCS (Public Key Cryptography 
Standards)

Question 9

x.509 standard fields

Answer 9

Field Usage - Serial Number A number uniquely identifying the certificate within the domain of its CA.

Signature Algorithm - The algorithm used by the CA to sign the certificate.

Issuer The name of the CA.

Valid From/To Date and time during which the certificate is valid.

Subject The name of the certificate holder, expressed as a distinguished name (DN). Within this, the Common Name (CN) part should usually match either the
fully qualified domain name (FQDN) of the server or a user email address.

Public Key Public key and algorithm used by the certificate holder.

Extensions V3 certificates can be defined with extended attributes, such as friendly
subject or issuer names, contact email addresses, and intended key usage.

Subject Alternative Name (SAN) - This extension field is the preferred mechanism to identify the DNS name or
names by which a host is identified

Question 10

• Common Name (CN)

Answer 10

• Legacy method of recording FQDN (fully qualified domain name
• Deprecated by standards
• BUT still used in many
implementations

Question 11

• Subject Alternative Name (SAN)

Answer 11

non legacy (Common Name (CS)) is legacy

• Structured identifiers
• List multiple host/subdomains
• Use wildcard subdomain

Question 12

Types of Certificate

Answer 12

• Certificate policicies and templates
• key usage
• Extended Key Usage/Enhanced Key Usage
• Critical or non critical

Question 13

server certificate

Answer 13

guarantees the identity of e-commerce sites or any sort of website
to which users submit data that should be kept confidential.

Question 14

Web server Certificate types

Answer 14

• Domain Validation (DV)
• More rigorous identity checks

• Extended Validation (EV)
• Even more rigorous identity
checks

Question 15

• Machine/computer certificates

Answer 15

• Servers and network appliances
• Identify by FQDN

It might be necessary to issue certificates to machines (servers, PCs, smartphones, and
tablets), regardless of function. For example, in an Active Directory domain, machine
certificates could be issued to Domain Controllers, member servers, or even client
workstations. Machines without valid domain-issued certificates could be prevented
from accessing network resources. Machine certificates might be issued to network
appliances, such as routers, switches, and firewalls. The SAN and often the CN attribute
should be set to the FQDN of the machine (host name and local domain part).

Question 16

FQDN

Answer 16

Fully qualified domain name

Question 17

• Email/user certificate

Answer 17

• Can be various types (email, encryption,
smart card logon, and so on)
• Identify by email address

Question 18

• Code signing

Answer 18

• Validate publisher name of the code

Question 19

• Root certificate

Answer 19

is the one that identifies the CA itself.

Question 20

Self-signed certificate

Answer 20

• Must be manually trusted

Any machine, web server, or program code can be deployed with a self-signed
certificate. Self-signed certificates will be marked as untrusted by the operating
system or browser, but an administrative user can choose to override this.

Question 21

Key lifecycle

Answer 21

• Key generation
• Certificate generation
• Storage
• Revocation
• Expiration and renewal

Key generation—creating a secure key pair of the required strength, using the
chosen cipher.
• Certificate generation—to identify the public part of a key pair as belonging to a
subject (user or computer), the subject submits it for signing by the CA as a digital
certificate with the appropriate key usage. At this point, it is critical to verify the
identity of the subject requesting the certificate and only issue it if the subject
passes identity checks.
• Storage—the user must take steps to store the private key securely, ensuring that
unauthorized access and use is prevented. It is also important to ensure that the
private key is not lost or damaged.
• Revocation—if a private key is compromised, the key pair can be revoked to prevent
users from trusting the public key.
• Expiration and renewal—a key pair that has not been revoked expires after a certain
period. Giving the key or certificate a “shelf-life” increases security. Certificates can
be renewed with new key material.

Question 22

M-of-N control

Answer 22

• M-of-N control for critical keys (root servers)

Access to such critical encryption keys must be logged and audited
and is typically subject to M-of-N control, meaning that of N number of administrators
permitted to access the system, M must be present for access to be granted. M must
be greater than 1, and N must be greater than M. For example, when M = 2 and
N = 4, any two of four administrators must be present. Staff authorized to perform
key management must be carefully vetted, and due care should be taken if these
employees leave the business.

Question 23

Key backup

Answer 23

• Keys can be backed up to protect against data loss
• Anyone with access to backup keys could impersonate the true key holder
• Key recovery processes can be protected by M of N control

Question 24

Escrow backup

Answer 24

• Placing archived keys with a trusted third party

Question 25

Certerficate expiration, renewal, etc

Answer 25

• Certificate duration
• Certificate renewal
• Use existing key pair
• Re-key with newly generated key pair
• Expiration
• Public key will no longer be accepted
• Archiving versus destroying key material (destroying is more secure)
• Secure erasing methods

Question 26

Cert revokation vs suspention

Answer 26

A revoked certificate is no longer valid and cannot be “un-revoked” or reinstated.

•A suspended certificate can be re-enabled.

Question 27

CRL

Answer 27

Certificate Revocation 
List (CRL)    [not necessarily real-time]
• List of revoked and 
suspended certificates
• Browser CRL checking

Question 28

• Online Certificate Status Protocol (OCSP)

Answer 28

• Provide real-time status information (though some rely on CRLs)
• Client queries single certificate per transaction

Question 29

• OCSP stapling

Answer 29

• Clients might need to make lots of certificate queries for a chain of
trust
• Queries can be used to track clients
• Stapling proxies the OCSP response

Question 30

SSL/TLS

Answer 30

SSL is standard technology for securing an internet connection by encrypting data sent between a website and a browser (or between two servers).

TLS: Transport Layer Security
TLS is an updated, more secure version of SSL. We still refer to our security certificates as SSL because it’s a more common term,

Question 31

Certificate Pinning

Answer 31

Pinning refers to several techniques to ensure that when a client inspects the
certificate presented by a server or a code-signed application, it is inspecting the
proper certificate.

• Defend against MitM attacks on chain of trust

Question 32

Certificate Formats

Answer 32

Slide 22. I skipped this one

Question 33

Open SSL

Answer 33

I skipped this one (slide 23)

Question 34

Certificate issues

Answer 34

The most common problem when dealing with certificate issues is that of a client
rejecting a server certificate (or slightly less commonly, an authentication server
rejecting a client’s certificate).

• Existing certificate—check expiry and status
• New certificate
• Check key usage settings and requirements
• Check subject name
• Check chain of trust/root certificates
• Verify time and date settings

Question 35

Certificat policies and templates

Answer 35

Certificate policies define the different uses of certificate types issued by the CA.
These can be configured as standard certificate templates.

Typical values used include Server
Authentication, Client Authentication, Code Signing, or Email Protection.

Question 36

Key usage

Answer 36

A certificate type is set by configuring the the Key Usage attribute. The Extended
Key Usage (EKU) field—referred to by Microsoft as Enhanced Key Usage—is a
complementary means of defining usage. Typical values used include Server
Authentication, Client Authentication, Code Signing, or Email Protection.

Question 37

Extended Key Usage/Enhanced Key Usage

Answer 37

The Extended Key Usage (EKU) field—referred to by Microsoft as Enhanced Key Usage—is a
complementary means of defining usage. Typical values used include Server
Authentication, Client Authentication, Code Signing, or Email Protection. The EKU field
is more flexible than the Key Usage field, but problems can occur when non-standard
or vendor-specific definitions are used.

Question 38

Critical or non critical (Under types of certs)

Answer 38

???
An extension can be tagged as critical, meaning that the application processing the
certificate must be able to interpret the extension correctly; otherwise, the certificate
should be rejected. In the case of a Key Usage extension marked as critical, an
application should reject the certificate if it cannot resolve the Key Usage value. For
example, this prevents a certificate issued for encrypting traffic sent to a web server
from being used for signing an email message.

Question 39

wilcard

Answer 39

*.example.com
A wildcard certificate is capable of being used by, and protecting, several servers so long as the domain and top level domain are matching.