Becoming a CA


Your server certificates have to be signed by a CA. You can easily set yourself up as a CA to sign your own certificates. The OpenSSL distribution includes a script to con- figure yourself as a CA. From the SSL home directory, type the following:

# misc/CA.pl -newca

Answer all of the prompts as requested. This sets up all of the necessary CA files below ./demoCA. Later, when you issue the command to sign a certificate, the openssl command will refer to these root certificates.

TLS Certificates Brief Overview

TLS uses public-key cryptography to allow a client and a server to communicate pri- vately. It also provides assurance that no one has tampered with transmitted informa- tion and that the information is not forged because the protocol allows for both the client and server to authenticate each other. Always keep in mind, however, that the benefits of TLS are limited to just the end points of a given TLS connection. What hap- pens to any data before or after it passes between the client and server is not protected by TLS.

Public-keycryptographyusesapairofcomplementarykeys.Onecanbewidelydistrib- uted and the other is a secret key. Data encrypted with one key can be decrypted with the other key and vice versa. Others can send you data encrypted with your public key that only you can decrypt with your private one. In most implementations, the private key can be used to create a digital signature of a block of data. The public key can then be used to verify that a particular private key created a given signature. Moreover, your public key is associated with an identifier, referred to as its common name (often the hostname of your server). Others can be sure your server is what it claims to be by comparing the common name associated with its public key against its DNS hostname or a name supplied during connection handshaking. In general, you want everyone to have your public key, but your private key must be guarded at all costs.

PublickeysaredigitallysignedbyCAstocreatecertificates.CAsareusuallythird-party organizations that are trusted by both sides of the exchange. In theory, the CA’s digital signature indicates that it has verified the identity of the public-key holder and attests that this public key belongs to this server. a A public key validated by a CA is often referred to as a signed certificate. Your trust in a certificate should extend only as far as your faith in the CA that signed it. The only assurance that exists with certificates comes from the CA that attests to a certificate holder’s identity.

The public/private keys are actually used only at the beginning of a connection to determine identities and to encrypt a randomly chosen session key. This single key is used by both sides to encrypt and sign the rest of the exchange. A session key can be used only for a single session, and then it is discarded. Let’s take a look at the exchange between a client and server. The client contacts a server and requests an encrypted connection. On the Web, the client uses https ; with email, the client issues the STARTTLS command to indicate that it wants an encrypted connection.

The server obliges by sending back its signed certificate, which indicates its common name and the CA that has validated it. The client verifies the server’s identity. It checks to see if the signing CA is listed among those it trusts and that the common name on thecertificateiswhatitexpects.Ifthecertificatechecksout,theclientandserverdeter- mine a key agreement to generate a session key to be used for this exchange and then discarded. The key agreement determination differs depending on the type of cypher in use. The conversation continues with both sides now using the private session key to encrypt and verify all transmissions.


results matching ""

    No results matching ""