Professional Documents
Culture Documents
Network Security Netzwerksicherheit: Tutorial-15
Network Security Netzwerksicherheit: Tutorial-15
Netzwerksicherheit
Design Fundamentals
ET-IDA-082
Tutorial-15
X509
21.06.2022, v17
Prof. W. Adi
CA<<A>> = CA {V, SN, AI, CA, TA, A …, AP} = (V, SN … Ap) | EPK-CA[H(I)]
A’s Signature
for all Information
in brackets
A { tA, rA, B, sgnData, EPKB[Kab] } = I || EPKB[ H(I) ]
Alice Bob
A Nonce B
PKB Information PKA
(to prohibit replay)
to be conveyed
Open Directory
USER B:
Nb = pb . qb = 11x 5= 55 open modulus of B Nb = 55
pb . qb = 11,5 two secret primes PKB = Eb= 7
User’s A Certificate: CA<<A>> = CA { 2, 101, 12, 33, 30, 13, 11} | 365 mod 57
CA<<A>> = CA { 2, 101, 12, 33, 30, 13, 11} | 6
V=2, SNa=101, AI=RSA=12, CA=33, TA=30, Apa=PKA=11 and H(I) = (21011233301311)2 mod 53 = 36
User’s B Certificate: CA<<B>> = CA { 2, 102, 12, 33, 30, 13, 7} | 155 mod 57
CA<<A>> = CA { 2, 102, 12, 33, 30, 13, 7} | 21
V=2, SNb=102, AI=RSA=12, CA=33,TB=30, Apb=PKB=7 and H(I) = (2102123330137)2 mod 53 = 15
A{rB} 3