第3 章 電子認証技術に関する国際動向
|
|
- かつかげ まつかた
- 4 years ago
- Views:
Transcription
1 3 IETF PKI TAM Trust Anchor Management
2 3. IETF Internet Engineering Task Force PKIX WG 3.1. IETF PKIX WG PKI Public-Key Infrastructure IETF PKIX WG IETF 70 IETF WG PKIX WG IETF PKIX WG PKIX WG ITU-T X.509 WG Working Group - PKIX WG IETF PKIX WG
3 Public-Key Public-Key Infrastructure Infrastructure (X.509) (X.509) WG WG 69 IETF 69 IETF Public-Key Public-Key Infrastructure Infrastructure (X.509) (X.509) WG WG 2007/7/26 15:10-16: /7/26 15:10-16:10 70 Agenda Agenda Document Status Overview Document Status Overview WG documents WG documents SCVP SCVP Subject Public Key info for ECC keys Subject Public Key info for ECC keys Related specifications and Liaison Related specifications and Liaison WebDav for certificate publication and revocation WebDav for certificate publication and revocation SCEP SCEP PRQP PRQP (Syntax for binding documents with time-stamps) (Syntax for binding documents with time-stamps) Framework on key compromise Framework on key compromise Three short fixes Three short fixes 3-1 Public-Key Infrastructure (X.509) WG 69 IETF IETF 76
4 69 IETF PKIX PKIX WG WG RFC RFC Editor RFC RFC Editor Lightweight OCSP (Proposed Standard) Lightweight OCSP (Proposed Standard) Service Name SAN(Subject Alt Name) Service Name SAN(Subject Alt Name) IESG IESG Server-based Certificate Validation Protocol (SCVP) Server-based Certificate Validation Protocol (SCVP) RFC 3280bis RFC 3280bis CMC (3 documents) CMC (3 documents) WG WG Draft for ECDSA and DSA with SHA-2 family of hash algorithms Draft for ECDSA and DSA with SHA-2 family of hash algorithms ECC algorithms ECC algorithms Credential Selection Criteria Data Structure Credential Selection Criteria Data Structure IETF PKIX WG Lightweight OCSP subjectaltname Service Name SAN IESG RFC 69 IETF RFC Editor Lightweight OCSP RFC Service Name SAN RFC4985 SCVP(Server-based Certificate Validation Protocol) RFC3280 (RFC3280bis) CMC(Certificate Management over CMS) 3 IESG SCVP RFC RFC3280bis CMC RFC Editor RFC3280bis IESG CRL 3 The Lightweight Online Certificate Status Protocol (OCSP) Profile for High-Volume Environments (RFC 5019) 4 Server-based Certificate Validation Protocol (SCVP) (RFC 5055) 77
5 WG WG Internet-Draft SCVP ECC Subject Key Info SCVP http TLS ECC Subject Key Info ML SCVP RFC5055 ECC Working Document Related specifications and Liaison 3-3 Related specifications and and Liaison WebDAV for certificate publication and revocation WebDAV for certificate publication and revocation WebDAV SCEP Simple WebDAV Certificate Enrollment Protocol SCEP Simple Certificate Enrollment Protocol SCEP RFC SCEP RFC Tim Polk AD PKIX CMC (Paul Tim Polk AD PKIX CMC Hoffman) informational RFC (Paul Hoffman) informational RFC PRQP PKI Resource Discovery Protocol PRQP PKI Resource Discovery Protocol URI OpenCA I-D ML URI OpenCA I-D ML PKI Disaster Recovery and Key Rollover PKI CA rollover Disaster Recovery and Key Rollover informational CA rollover RFC informational RFC Three short fixes Three experimental short fixes RFC experimental RFC subject OID WebTrust subject OID complient WebTrust complient WG WG 3-3 Related specifications and Liaison PKIX WG WebDAV PKI Disaster Recovery and Key Rollover 78
6 WebDAV for for certificate publication and and revocation WebDAV WebDAV Representational State Transfer (REST) Representational State Transfer (REST) URL URL CRL CRL DoS DoS /cn=david%20chadwick/ /cn=david%20chadwick/ /cn=crls/ CRL /cn=crls/ CRL 3-4 WebDAV for certificate publication and revocation WebDAV for certificate publication and revocation WebDAV LDAP URL CN Common Name URL URL WebDAV PKI Disaster Recovery and Key Rollover PKIX WG individual draft Disaster Recovery 79
7 PKI PKI Disaster Disaster Recovery and and Key Key Rollover CRL DoS CRL DoS Revocation Authority Attribute Revocation Autohrity Time-Stamp Authority CRL Authority Repository Attribute Autohrity Time-Stamp Authority CRL Repository individual draft WG draft PKIX WG WG individual draft WG draft PKIX WG WG 3-5 PKI Disaster Recovery and Key Rollover PKI Disaster Recovery and Key Rollover Joel Kazin CPS(Certificate Practice Statement) PKI Informational RFC Revocation Authority Attribute Authority (Time-stamp Authority) CRL DoS(Denial of Services) ( ) 3.3. TAM Trust Anchor Management TAM BoF 69 IETF 7 27 ( ) 70 VPN TAM BoF Web VPN 80
8 Carl Wallace out-of-band ( ) TAM problem statement 81
9 Problem Statement Problem statement Problem statement draft-wallace-ta-mgmt-problem-statement-01 draft-wallace-ta-mgmt-problem-statement-01 trust anchor store trust anchor store draft-ietf-dnsext-trustupdate-timers draft-ietf-dnsext-trustupdate-timers trust anchor trust anchor Trust Anchor Trust Anchor rfc3280 rfc3280 OCSP OCSP 3-6 Problem Statement trust anchor store Web IPsec 82
10 Problem Statement trust anchor store add/remove/query trust anchor store add/remove/query oub-of-band oub-of-band trust anchor trust anchor trust anchor store trust anchor store trust anchor out-of-band fingerprint trust anchor out-of-band fingerprint trust anchor store trust anchor store disaster recovery disaster recovery trust anchor authority trust anchor store trust anchor authority trust anchor store trust anchor manager trust anchor delegation trust anchor manager trust anchor delegation 3-7 Problem Statement trust anchor store fingerprint out-of-band BoF 83
11 TAM TAM BoF BoF Tim Polk BoF Tim Polk WG problem statement constituency( WG problem or ) statement constituency( or ) trust anchor manager trust anchor manager " trust anchor " trust anchor APNIC Terry APNIC Terry IETF ML IETF ML WG WG 3-8 TAM BoF TAM BoF Tim Polk BoF WG Trust Anchor Management IETF WG PKIX WG IETF PKIX WG
12 Public-Key Public-Key Infrastructure Infrastructure (X.509) (X.509) WG WG 70 IETF 70 IETF Public-Key Public-Key Infrastructure Infrastructure (X.509) (X.509) WG WG 2007/12/3 13:05-15: /12/3 13:05-15:05 50 Agenda Agenda WG Status and Direction WG Status and Direction PKIX WG Specifications PKIX WG Specifications Certificate and Certificate Revocation List Profile (3280bis) Certificate and Certificate Revocation List Profile (3280bis) Certificate Management Messages over CMS Certificate Management Messages over CMS Subject public key info resolution for ECC Subject public key info resolution for ECC OCSP Algorithm agility OCSP Algorithm agility Related specifications and Liaison Presentations Related specifications and Liaison Presentations Liaison statements received from ITU-T SG17 Liaison statements received from ITU-T SG17 Trust Anchor Management Protocol (TAMP) Trust Anchor Management Protocol (TAMP) Updating ASN.1 modules to 1998 syntax Updating ASN.1 modules to 1998 syntax Credential selection - Mainly a PKI problem Credential selection - Mainly a PKI problem Resource Discovery Protocol Resource Discovery Protocol 3-9 Public-Key Infrastructure (X.509) WG 70 IETF Stefan Santesson Credential selection 70 IETF PKIX WG
13 70 IETF PKIX PKIX WG WG RFC RFC RFC RFC Editor Editor Server-based Certificate Validation Protocol (SCVP) Server-based Certificate Validation Protocol (SCVP) IESG IESG RFC 3280bis RFC 3280bis CMC (3 documents) CMC (3 documents) WG WG Draft for ECDSA and DSA with SHA-2 family of hash Draft for ECDSA and DSA with SHA-2 family of hash algorithms algorithms ECC algorithms ECC algorithms IETF PKIX WG Server-based Certificate Validation Protocol (SCVP) RFC Editor RFC3280bis CMC IESG SCVP RFC5055 RFC3280bis CMC RFC Editor PKIX WG
14 PKIX WG Subject Subject public public key key info info resolution resolution for for ECC ECC ECC (Elliptic ECC (Elliptic Curve Cryptography ) Curve Cryptography ) RFC4055 X RFC4055 RFC4055 X RFC4055 OCSP OCSP Algorithm Algorithm agility agility draft-hallambaker-ocspagility-00.txt draft-hallambaker-ocspagility-00.txt ML ML 3-11 PKIX WG PKIX WG ECC RFC X RFC4055 OCSP Algorithm agility OCSP Open Certificate Status Protocol OCSP ITU-T PKIX WG 5 Certificate and Certificate Revocation List (CRL) Profile (RFC 4055) 6 ANSI X Public Key Cryptography for the Financial Services Industry, The Elliptic Curve Digital Signature Algorithm (ECDSA) 87
15 PKIX WG Related Related Specifications Specifications and and Liaison Liaison Presentations Presentations Liaison statements received from ITU-T SG17 Liaison statements received from ITU-T SG17 ITU-T PKIX WG ITU-T PKIX WG streetaddress upper bound unbound streetaddress upper bound unbound bufferoverflow bufferoverflow CA CA no responsible and no mechanism no responsible and no mechanism 3-12 PKIX WG ITU-T DN Distinguished Name DN streetaddress organizationname PKIX WG PKI bufferoverflow CA CA CA PKIX WG IETF PKIX WG 88
16 69 IETF BoF TAM PKIX WG PKIX WG WG ML 70 IETF PKIX WG PKIX WG Trust Trust Anchor Anchor Management Management Protocol Protocol (TAMP) (TAMP) IETF-69 TAM BoF WG IETF-69 TAM BoF WG TAM Protocol PKIX WG TAM Protocol PKIX WG Working Item Working Item ML ML Updating Updating ASN.1 ASN.1 modules modules to to syntax syntax ASN ASN.1 ASN ASN ASN.1 ANY ASN.1 ANY LTANS Tobias der/ber LTANS Tobias der/ber 3-13 PKIX WG ASN.1 WG individual PKIX WG WG WG PKIX WG ASN ASN PKIX WG RFC 89
17 PKIX WG Credential Credential selection selection - - Mainly Mainly a a PKI PKI problem problem Resource Resource Discovery Discovery Protocol Protocol http http ML strow poll ML strow poll 3-14 PKIX WG Credential selection Resource Discovery Protocol Credential selection Resource Discovery Protocol http Internet-Draft ML 3.5. IETF X.509 PKIX WG PKI Trust Anchor Management 2007 PKIX WG 3 RFC
18 Russ Housley PKIX WG PKI PKIX WG PKI 91
19 92
/02/ /09/ /05/ /02/ CA /11/09 OCSP SubjectAltName /12/02 SECOM Passport for Web SR
for Web SR Certificate Policy Version 2.50 2017 5 23 1.00 2008/02/25 1.10 2008/09/19 1.20 2009/05/13 5 1.30 2012/02/15 5.6 CA 1.40 2012/11/09 OCSP SubjectAltName 2.00 2013/12/02 SECOM Passport for Web
More information/07/ /10/12 I
Certificate Policy Version 1.10 2018 10 12 1.00 2018/07/24 1.10 2018/10/12 I 1.... 1 1.1... 1 1.2... 1 1.3 PKI... 2 1.3.1 CA... 2 1.3.2 RA... 2 1.3.3... 2 1.3.3.1... 2 1.3.3.2... 3 1.3.4... 3 1.3.5...
More information<4D F736F F F696E74202D B F8089BB82CC88EA91A496CA C982A882AF82E9504B4982CC8FF38BB52E707074>
標準化の一側面 -- IETF における PKI の状況 -- 富士ゼロックス株式会社システム要素技術研究所稲田龍 概要 RFC 5280 (RFC 3280 の後継 ) が 2008 年 5 月に公開 PKI のインターネットでの利用のプロファイルが更新 PKI のインフラストラクチャとしての利用には決着がついたのか? 新たな暗号 ハッシュアルゴリズムの利用は?
More informationuntitled
better RFID 1 /?? PKI PKI ) (GPKI) GtoB GPKI 3300- LGPKI GtoC -> Identrus B2B GPKI Identrus PKI 2 Internet-VPN PKI? HTTPS ( ) HTTPS 3 PKI??????? PDA/ /? RFIDPKI?? 4 Challenge
More informationはじめに
19 1.1 19 1.2 21 1.3 22 1.3.1 DES 24 1.4 25 1.4.1 DH 26 1.4.2 RSA 26 1.4.3 ElGamal 27 1.4.4 DSA 27 1.5 27 1.6 28 1.6.1 SHA-1 28 1.6.2 MD5 Message Digest 5 28 1.7 29 1.7.1 MIC 29 1.7.2 HMAC 29 1.7.3 30
More informationuntitled
PKI 1 / SSL/TLS PKI 28 Oct 2005 PKI /JNSA PKI Day 3 PKI? 2 RFC 2459/RFC 3280/RFC 3280bis CRL(RFC 2459/RFC 3280/RFC 3280bis) OCSP(RFC 2560/Light-weight OCSP) SCVP(SCVP) CMP(RFC 2510/RFC 4210) CRMF(RFC 2511/RFC
More informationPKIの標準化動向と リソースPKI
PKI Day 2009 2009 6 24 PKI PKI JPNIC RFC5280 PKI RFC5280 PKI RPKI IP RPKI RFC5280 RFC5280 RFC3280 PKI RFC5280 RFC5280 1/4 RFC5280 X.509-based PKI X.509CRL 2008 5published RFC5280 2/4 1988 1995 1997 1999
More informationCisco® ASA シリーズルーター向けDigiCert® 統合ガイド
Cisco ASA DigiCert 2013 7 8 Cisco ASA VPN DigiCert : 2013 7 8 Copyright 2018 DigiCert, Inc. All rights reserved. DigiCert DigiCert DigiCert, Inc. Symantec Norton Symantec Corporation DigiCert, Inc. DigiCert,
More informationuntitled
PKI UTF8String Part4: IETF MicrosoftMSWindowsWindows 2000Windows NTWindows XPWindows Internet ExplorerOutlookOutlook Express Microsoft Corporation Sun MicrosystemsSun Java Solaris JavaJDK Sun Microsystems
More informationYMS-VPN1_User_Manual
YAMAHA VPN YMS-VPN1 2007 12 YAMAHA VPN YMS-VPN1 YMS-VPN1 RT Windows PC IPsec VPN 2000-2002 SSH Communications Security Corp 2004-2007 SafeNet Inc. 2004-2007 dit Co., Ltd. 2006-2007 YAMAHA CORPORATION MicrosoftWindows
More information楕円曲線暗号の整備動向 +楕円暗号の実装状況
楕円曲線暗号の整備動向 + 楕円暗号の実装状況 2011 年 2 23 筑波 学 岡晃 2011/2/23 JNSA PKI 相互運用 WG 1 IPA 情報セキュリティ技術動向調査 TG ( タスク グループ ) 広範な情報セキュリティ分野において 継続的に かつ 質の い技術情報を収集し続けるため 半期毎に発表会形式の会合を開催し 討議をふまえて調査報告書を作成します http://www.ipa.go.jp/security/outline/comm
More informationChallenge PKI 2002 IETF PKI
Challenge PKI 2002 IETF PKI 2003 64 Agenda IETF? IETF PKI JNSAIETF Copyright (c) 2003 NPO Page 2 IETF? RFC www.ietf.org 8 WG Applications, General, Internet, Operations and
More information3. RIR 3.1. RIR Regional Internet Registry APNIC Asia Pacific Network Information Centre RIR RIPE NCC Réseaux IP Européens Network Coordination Centre
3 RIR RIR APNIC 1. 2. MyAPNIC RIPE NCC 1. 2. LIR Portal ARIN 3. RIR 3.1. RIR Regional Internet Registry APNIC Asia Pacific Network Information Centre RIR RIPE NCC Réseaux IP Européens Network Coordination
More information, Evaluation of Certificate Verification Methods in Mobile Environment Katsuyuki UMEZAWA,, Mitsuhiro OIKAWA, Seiichi SUSAKI, Satoru TEZUKA, and Shigei
, Evaluation of Certificate Verification Method in Mobile Environment Katuyuki UMEZAWA,, Mituhiro OIKAWA, Seiichi SUSAKI, Satoru TEZUKA, and Shigeichi HIRASAWA PKI PKI CRL OCSP CVS 3 3 CVS PKI CVS OCSP
More informationuntitled
1 2 1 3 IR... 4 2 5 1990 Surety 1990 2000 IETFISO/IEC 6 3 7 ISO/IEC 18014 IETF RFC 3161 Time-stamp Protocol ETSI TS 102 023RFC 3628) ETSI TS 101 861 8 4 (TSA, Time Stamping Authority) 1ab5c98f... 1ab5c98f...
More informationXMLを基盤とするビジネスプロトコルの動向
XML Trends of XML-Based Business Protocols ebxml Web XML ebxml UN/CEFACT EDIFACTOASIS XML Web W3C World Wide Web Consortium Abstract XML-based technologies such as the Electronic Business XML Initiative
More information1. PKI (EDB/PKI) (Single Sign On; SSO) (PKI) ( ) Private PKI, Free Software ITRC 20th Meeting (Oct. 5, 2006) T. The University of Tokush
PKI LAN EDB/PKI and Campus Wireless LAN Authentication EDB/PKI http://web.db.tokushima-u.ac.jp/edb-manual/pki.html http://ldap.db.tokushima-u.ac.jp/wireless/ @. E-mail: alex@ee.tokushima-u.ac.jp Id: itrc20th-20061005.tex,v
More informationMicrosoft Intune MDM ソリューション向けDigiCert® 統合ガイド
Microsoft Intune MDM DigiCert 2018 7 31 Microsoft Intune MDM DigiCert : 2018 7 31 Copyright 2018 DigiCert, Inc. All rights reserved. DigiCert DigiCert DigiCert, Inc. Symantec Norton Symantec Corporation
More information2
m.uehata@sii.co.jp 2 SII 1881 1892 1937 1959 3 SEIKO 1881 1955 1964 1974 1984 1992 1994 1998 1998 2002 2002 4 SII 1960 1970 1980 1990 CMOS IC LCD LCM 2000 COF 1937 VLSI FIB 5 < > SA EOA CAE < > 6 Network
More informationuntitled
Vista PKI PKI IE7IE7 Kiyoshi Watanabe, CISSP Security Center of Excellence (SCOE) Microsoft Vista Windows 2008 Vista, IE7, PKI Enrollment Credential CNG Bit Locker NAP IE7 Vista 6 http://www.csoonline.com/pdf/6_month_vista_vuln_report.pdf
More informationWeb 関連 グリー株式会社後藤 2015/12/8 IETF 94 報告会
Web 関連 グリー株式会社後藤 2015/12/8 IETF 94 報告会 自己紹介 - 後藤 - グリー株式会社 - インフラエンジニア - 主に運用業務 - ISOC-JP Program commitee - 今回 IETF 初参加 - 個人活動 - HTTP2 Study - HTTP2 関連で書籍レビュー 寄稿 目次 Web 関連 - HTTPbis WG - WebPush - QUIC
More informationuntitled
2004845 PKIUTF8String Part1: UTF8String UTF8String PKI UTF8String UTF8String 2 (1) ( ) A, ü, [ ] [ ] ASCII JIS X2013 Unicode(ISO 10646) ( )( ) Unicode A U+0041 U+007F 3 (2) u ü ( )( ) ( )(
More informationENUM
ENUM Internet Week DNS Day fujiwara@jprs.co.jp ENUM ENUM IETF ENUM WG Status ITU ENUM DNS ENUM 050 ENUM e164.arpa DNS ITU International Telecommunication Union ITU-T ITU Telecommunication Standardization
More informationDNSSEC の仕組みと現状 平成 22 年 11 月 DNSSEC ジャパン
DNSSEC の仕組みと現状 平成 22 年 11 月 DNSSEC ジャパン アジェンダ 1. DNSとは 2. DNSの動作 3. DNSSECとは 4. DNSSECの動作 5. DNSSECの現状 6. 参考 URL 7. DNSSEC 関連 RFC 2 DNS とは DNS(Domain Name System) とは ホスト ( ドメイン ) 名を IP アドレスに IP アドレスをホスト
More information証明書検証サーバ
(Certificate Validation Server) 2007/11/1 Version 1.09 (Certificate Validation Server) 1 2006/4/27 0.930 2 2007/5/8 0.940 / 3 2007/5/15 0.950 Solaris TOE Linux TOE ST 4 2007/5/23 0.960 ASE ( : ASE001-01)
More information電子メールのセキュリティ
S/MIME 1...1 1.1... 1 1.2... 2 1.3... 2 2...3 2.1... 3 2.2... 4 2.3... 4 3...5 3.1... 5 3.2... 6 3.3... 8 3.4... 10 4...12 4.1 PGP... 12 4.2 (CA)... 13 5 CRL...15 5.1 ( ID )... 15 5.2 CRL(Certificate Revocation
More informationEnhancements In Certificate Service
Windows Server 2008 の PKI 機能 渡辺清 CISSP Security Architect and Senior Consultant Security Center of Excellence, Microsoft アジェンダ PKI 概要 Windows Server 2008 PKI 機能 暗号 (Cryptography) 登録 (Enrollment) 管理 (Manageability)
More informationENUM トライアルジャパン 第3次報告書
ENUM 3 2008 5 ENUM ... 3 1....4 2.... 5 2.1... 5 2.1.1 BoF... 7 2.2 ETJP... 7 3.... 8 3.1 SIPIT18... 8 3.1.1 SIPit18... 8 3.1.2... 8 3.1.3... 8 3.1.4... 8 3.1.5... 9 3.1.6... 9 3.1.7... 12 3.1.8... 13
More informationOracle Identity Managementの概要およびアーキテクチャ
Oracle Identity Management 2003 12 Oracle Identity Management... 3 ID... 3 ID... 4 ID... 4 Oracle Identity Management... 5 Oracle Identity Management... 6 Oracle Identity Management... 7 ID... 8 Application
More informationISOC-JP_IETF87_SEC_KannoRev4.pptx
ISOC JAPAN CHAPTER IETF87 UPDATE MEETING SECURITY 関 連 ーTLS WG, IRTF CFRG, 暗 号 技 術 の 何 かー NTTソフトウェア 株 式 会 社 菅 野 哲 (かんの さとる) kanno.satoru@po.ntts.co.jp 2013 年 9 月 5 日 1 はじめに IETF87 Security Areaでの 動 向 から
More informationKatsuhito Asano Fujitsu LTD /Apr/2002 1
Katsuhito Asano Fujitsu LTD. 2002 24/Apr/2002 1 Sub-IP Area WG WG Sub-IP WG PWE3(Transport Area) L2TPEXT 2 Sub-IP Area Sub-IP Area MPLS 3 Sub-IP Area Sub-IP IP(Layer3) Media(Layer2) Layer2.5 Area The work
More informationhttp://www.ipa.go.jp/security/ Contents 1. NIST 2010 2. NISC 3. CRYPTREC 2008 10 28 Copyrignt 2008, IPA all right reserved. 2 1977 MAC) PKI PKI PKI: (Public Key Infrastructure) 2008 10 28 Copyrignt 2008,
More informationTesting XML Performance
- DataPower Technology, Inc. XML Web 2003 5 DATAPOWER XML WEB - Copyright 2003DataPower Technology, Inc. All Rights Reserved. DataPower Technology, Inc. DataPower DataPower ( ) DataPower 2003 5 2/17 DATAPOWER
More information2002 8 2
2002 8 2 1....1 1.1.... 1 1.2. PKI IPsec... 1 2....2 2.1. VPN... 2 2.2.... 3 3....4 3.1. VPN PKI... 4 3.2.... 5 3.3. IPsec... 6 4....7 4.1. VPN PKI... 7 4.2.... 7 4.3. IPsec...11 5.... 21 5.1.... 21 5.2....
More informationRPKI in DNS DAY
RPKI in DNS DAY 木村泰司 2015 年 11 月 19 日 ( 木 ) 発表者 名前 木村泰司 ( きむらたいじ ) 所属 一般社団法人日本ネットワークインフォメーションセンター (JPNIC) CA / RPKI / DNSSEC / セキュリティ情報 : 調査 ( 執筆 ) セミナー 企画 開発 運用 ユーザサポート 業務分野 電子証明書 / RPKI / DNSSEC (DPS/
More informationWS-I Basic Profile 1.0 の概説
WS-I Basic Profile 1.0 Copyright(C) Hitachi, Ltd. & NEC Corporation & FUJITSU LIMITED (2003), All Rights Reserved. 1 1. Basic Profile 2. Basic Profile 1.0 3. (Conformance) 4. MESSAGE 5. DESCRIPTION 6.
More informationuntitled
PKI UTF8String Part1: UTF8String Microsoft MS Windows Windows 2000 Windows NT Windows XP Windows Internet Explorer Outlook Outlook Express Microsoft Corporation Sun Microsystems Sun Java Solaris Java JDK
More informationRPKIとインターネットルーティングセキュリティ
RPKI とインターネット ルーティングセキュリティ ~ ルーティングセキュリティの未来 ~ セキュリティ事業担当 木村泰司 内容 1. リソース証明書と RPKI 2. 国際的な動きと標準化動向 3. ディスカッションのポイント 2 1 リソース証明書と RPKI リソース証明書とは ~ アドレス資源の 正しさ ~ イ ) これは正しいアドレスだ whois $ whois h whois.nic.ad.jp
More informationsp c-final
NIST SP 800-63C - Federation and Assertions - Nov Matake Nov Matake OpenID Foundation Japan WG #idcon OAuth.jp YAuth.jp LLC 800-63-3 Federation Assurance Level (FAL) Federation Assurance Level Federation
More information橡03_ccTLD_rev.PDF
cctld 2003. 4. 30 JPRS ( ) hotta@jprs.co.jp http://.jp/ 1 TLD ICANN cctld 2003.3.23-25 ccnso ITU IDN ( ) ENUM 2 ccnso ccnso : country code Names Supporting Organization DNSO ASO PSO ISP cctld GNSO ccnso
More informationMobilelron® Virtual Smartphone Platform 向けDigiCert® 統合ガイド
Mobilelron Virtual Smartphone Platform DigiCert 2015 11 18 Mobilelron Virtual Smartphone Platform DigiCert 2015 11 18 Copyright 2018 DigiCert, Inc. All rights reserved. DigiCert DigiCert DigiCert, Inc.
More informationuntitled
1 6. 2 NAREGIWP5 3 Packaging Grid Programming (WP2) -Grid RPC -Grid MPI Grid-Enabled Nano-Applications (WP6) Grid Visualization Grid Workflow (WFML (Unicore+ WF)) Super Scheduler WP3 WP1 Grid PSE WSRF
More informationWindows Oracle -Web - Copyright Oracle Corporation Japan, All rights reserved.
Windows Oracle -Web - Copyright Oracle Corporation Japan, 2004. All rights reserved. Agenda Oracle Windows Windows Oracle 1 / Active Directory/Enterprise User Security 1-1 Windows 1-2 Kerberos 1-3 Enterprise
More information2 BIG-IP 800 LTM v HF2 V LTM L L L IP GUI VLAN.
BIG-IP800 LTM v11.4.0 HF2 V1.0 F5 Networks Japan 2 BIG-IP 800 LTM v11.4.0 HF2 V1.0...1 1....3 1.1. LTM...3 2. L3...4 2.1. L3...4 2.2. L3...5 3....6 3.1....6 3.1.1. IP...6 3.1.2. GUI...10 3.1.3. VLAN...19
More information28 SAS-X Proposal of Multi Device Authenticable Password Management System using SAS-X 1195074 2017 2 3 SAS-X Web ID/ ID/ Web SAS-2 SAS-X i Abstract Proposal of Multi Device Authenticable Password Management
More informationVol. 45 No Web ) 3) ),5) 1 Fig. 1 The Official Gazette. WTO A
Vol. 45 No. 8 Aug. 2004, 1999 11 (1) (2) (3) 2003 7 Digital Evidence Enhancement for the Japanese Official Gazette Data Providing Services Atsuko Umezawa,, Hiroyuki Ueno, Yukio Miyata, Yasuharu Saikawa,
More information橡CoreTechAS_OverView.PDF
Page 1 1 Page 2 2 J2EE, & Web Services Page 3 3 J2EE&Web Services racle HTTP Server racleas Container for J2EE racleas TopLink racleas Web Services racle Content Management SDK racle XML Developer Kit
More information.Net CryptoAPI 機能と利用法
2004.8.26.NET CryptoAPI API Part 3..NET Crypto API http://www.ipa.go.jp/security/fy15/reports/sec _api/index.html Windows CryptoAPI CryptoAPI PKI CryptoAPI API CTL CryptoAPI CSP Crypto Service Provider
More informationNLC配布用.ppt
Semantic Web September 20, 200 IBM( ) (uramoto@jp.ibm.com) Semantic Web ( )? Semantic Web 2 What can it do? (by Jim Hendler) 3 Semantic Web W3C Director Berners-Lee Web The Semantic Web is an extension
More information図解でわかるVoIPのすべて - IP電話の技術から構築まで -
VoIP VoIP 2003 2003 9 10 1 IP VoIP VoIP 11301J101 VoIP(Voice over Internet Protocol) VoIP IP IP IP 3 1. IP 2. VoIP 3. QoS 4. IP 4 IP IP 5 1.1 IP IP IP IP VoIP VoIP 6 1.2 IP - - - - - 7 1.2 IP - - - - 8
More informationスライド タイトルなし
DSRC 2003 9 24 ITS DSRC September 24, 2003 1 ( ) ITS 1 DSRC 2 DSRC 3. DSRC 4. DSRC 5. VSC 6 DSRC September 24, 2003 2 DSRC September 24, 2003 3 1. ETC DSRC 150 ( ) 2. ETC ITS - ETC Highway Highway Surveillance
More informationFinancial Statements 2004
Financial Statements 2004 10,150 5,591 $ 92,227 16,078 13,561 146,100 463 462 4,205 193 205 1,758 915 607 8,317 1,202 1,088 10,918 (80) (83) (726) 28,921 21,431 262,799 1,435 927 13,035 657 656 5,964 537
More information"CAS を利用した Single Sign On 環境の構築"
CAS 2 SSO Authorization 1,3, 2,3, 2, 2,3 1 2 3 Central Authentication and Authorization Service (CAS 2 ) Web Application Single Sign On Authorization CAS 2 SSO/AuthZ Jan. 30 2007, p. 1/40 Plan of Talk
More informationIPv4 over IPv6技術の最新動向と標準化
IPv4 over IPv6 技術の 最新動向と標準化 日本インターネットエクスチェンジ株式会社石田慶樹 / 馬渡将隆 Copyright 2012 Japan Internet Exchange Co., Ltd. 1 Agenda 1. IPv4 over IPv6 技術の必要性 2. 標準化に関する最新動向 3. 実装に関する最新動向 Copyright 2012 Japan Internet
More informationWin XP SP3 Japanese Ed. NCP IPSec client Hub L3 SW SRX100 Policy base VPN fe-0/0/0 vlan.0 Win 2003 SVR /
SRX dial-up VPN (NCP ) Win XP SP3 Japanese Ed. NCP IPSec client Hub L3 SW SRX100 Policy base VPN fe-0/0/0 vlan.0 Win 2003 SVR.216 172.27.24.0/24.254.254.1.1.100 100.100.100.0/24 192.168.1.0/24 Test devices
More information3. /dev/urandom 1024 ~CA0/private/cakey.pem $ openssl genrsa -rand /dev/urandom -out \ private/cakey.pem 1024 Generating RSA private key
PKI : OpenSSL CA NISOC @ 2007/01/06 1 CA:Certificate Authority OpenSSL CA CA0 CA0 2 CA CA1 CA2 3 CA CA1 CA2 PC CA CA 2 CA CA0 1. CA ~CA0 openssl.cnf [ CA default ] dir ~CA0 [ req distinguished name ] CSR
More information通信プロトコルの認証技術
PKI IPsec/SSL IETF (http://www.netcocoon.com) 2004.12.9 IPsec ESP,AH,IPComp DOI:SA IKE SA ISAKMP IKE ESP IKE AH DOI Oakley ISAKMP IPComp SKEME IPsec IPv4TCP + IPv6TCP + IPv4 AH TCP + IPv6 AH + TCP IPv4
More informationJuniper Networks Corporate PowerPoint Template
Juniper SRX 日本語マニュアル 41. SSL Forward Proxy の CLI 設定 はじめに SRX340 における SSL Forward Proxy の CLI 設定ついて説明します 手順内容は SRX340 JUNOS 15.1X49-D140 にて確認を実施しております SSL Proxy 機能については SRX340 以上の機種にてサポートされています 2018 年 8
More informationMotivation 3 Motivation 4 (Availability) Keep High Availability Providing Reliable Service (New service, function) Provide new Services, with new func
VPLS daisuke.koshiro@tm.softbank.co.jp 1 Agenda Motivation VPLS VPLS VPLS 2 Motivation 3 Motivation 4 (Availability) Keep High Availability Providing Reliable Service (New service, function) Provide new
More information1 Microsoft Windows Server 2012 Windows Server Windows Azure Hyper-V Windows Server 2012 Datacenter/Standard Hyper-V Windows Server Windo
Windows Server 2012 2012 1 Cloud OS Windows Azure Platform On-Premises Service Provider 1 Microsoft Windows Server 2012 Windows Server 2012 1 Windows Azure Hyper-V Windows Server 2012 Datacenter/Standard
More informationISO/IEC 9798プロトコルの安全性評価
ISO/IEC 9798 2011 2 4 ISO/IEC 9798-2 (Mechanisms using symmetric encipherment algorithms), ISO/IEC 9798-3 (Mechanisms using digital signature techniques), ISO/IEC 9798-4 (Mechanisms using a cryptographic
More informationRPKI関連
IETF 報告会 (88 th バンクーバー ) RPKI 関連 木村泰司 taiji-k at nic.ad.jp 1 RPKI とは RPKI ( リソース PKI) Resource Public-Key Infrastructure リポジトリ ROA(IP アドレスと AS 番号の組み合わせ ) リソース証明書 IP アドレス等の割り振り証明書 キャッシュ BGP ルーター IP アドレスの割り振り先
More informationENUM とは E.164 番号 (= 電話番号 ) からDNSを用いてインターネット上のアプリケーションを (URI 形式で ) 得る機構電話番号から メールアドレス (mailto:) web ページ (http:) SIP アドレス (sip:) 電話 (tel:) IP 電話への適用は EN
ENUM( イーナム ) の概要 2003.7.31 ( 社 ) 日本ネットワークインフォメーションセンター ( 株 ) 日本レジストリサービス佐野晋 1 ENUM とは E.164 番号 (= 電話番号 ) からDNSを用いてインターネット上のアプリケーションを (URI 形式で ) 得る機構電話番号から メールアドレス (mailto:) web ページ (http:) SIP アドレス (sip:)
More informationEncryption Security
200426 XML Consortium WG XML Signature XML Encryption XKMS2.0 X-KRSS:Register X-KISS:Locate X-KISS:Validate WS-Security XACML WG 2004/02/06 1 XML WG 2004/02/06 2 2001 2002 2003 XKMS XML SAML SSO SAML XML
More informationSlide 1
Windows 7 と Windows Server 2008 R2 で実現する PKI マイクロソフト株式会社 GMOグローバルサイン株式会社 渡辺清浅野昌和 1 はじめに Windows 7 及び Windows 2008 R2 は現在製品候補版 (Release Candidate) 段階であり 本日の情報は最終リリース時と異なる可能性があります 2 アジェンダ 背景 PKI 拡張サーバ統合現状シナリオの改善
More informationMacintosh HD:Users:ks91:Documents:lect:nm2002s:nm2002s03.dvi
3 ks91@sfc.wide.ad.jp April 22, 2002 1 2 1. over IP ( : Voice over IP; IP Internet Protocol ) over IP??? : 2002/4/20 23:59 JST : http://www.soi.wide.ad.jp/report/ 3 32 11 (4/22 ) 4 () 3 2 1? 4 ...... A.C.
More informationiPhone Configuration Utility
iphone 2011-03-04 Apple Inc. 2011 Apple Inc. All rights reserved. 1 Apple Apple Apple Inc. 1 Infinite Loop Cupertino, CA 95014 408-996-1010 163-1450 3 20 2 http://www.apple.com/jp/ App Store itunes Store
More informationppt
XML Liberty Alliance Project 2005 9 13 Liberty Alliance SIG Co-Chair NEC 1 Liberty Alliance 2 Liberty Alliance Project Liberty Alliance Liberty 3 Liberty Alliance Project 4 Liberty
More information特集_03-07.Q3C
3-7 Error Detection and Authentication in Quantum Key Distribution YAMAMURA Akihiro and ISHIZUKA Hirokazu Detecting errors in a raw key and authenticating a private key are crucial for quantum key distribution
More informationuntitled
https http Web HTTP (hypertext Transfer Protocol) SSL HTTPS(hypertext Transfer Protocol Security) (Subject) (subject) Subject IEInternetExplorer ActiveMail! [Esc] [Ctrl] [z] From: To: Subject: Cc: Bcc:
More informationCMS長期署名プロファイル(案)
1/22 RFC3126, Electronic Signature Formats for long term electronic signatures (ETSI TS 101 733 V.1.2.2(2000-12)) ETSI TS 101 733 V1.5.1(2003-12), Electronic Signature Formats draft-pinkas-smime-cades-00.txt(2005-7),
More informationEANTC 1 CSP 2 SDN WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engin
1 EANTC 1 CSP 2 SDN WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engine Cisco WAN Automation Engine / WAN Automation Engine Tail-f Cisco Network Service
More informationWP_8021X Authentication_21MAY2012
OS X 10.7.3 ios 5.1 2012 6 5 ...3 Apple...7...10...17 A...18 B...25 C Active Directory...32 LAN LAN RSA EAP Extensible Authentication Protocol Kerberos EAP EAPoL EAP over LAN EAP RADIUS Remote Authentication
More informationDynamic VPN Dynamic VPN IPSec VPN PC SRX IPSec VPN SRX PC IPSec 2 Copyright 2010 Juniper Networks, Inc.
SRX DYNAMIC VPN Dynamic VPN Dynamic VPN IPSec VPN PC SRX IPSec VPN SRX PC IPSec 2 Copyright 2010 Juniper Networks, Inc. www.juniper.net DYNAMIC VPN Netscreen Remote(NS-R) (NS-R) PC SRX Dynamic VPN SRX
More informationwide97.dvi
11 321 1 CA (Certication Authority) ( ) 1 3 CA S/MIME[104][105][106] SSL[107](Secure Sockets Layer), TLS[108](Transport Layer Security) WWW Netscape Microsoft Web SSL CA CA CA CA CA CA CA members only
More informationuntitled
Windows Internet Information Server SQL Server 2 Explorer 3 MMC MMC mmc /a SQL Enterprise Manager IIS 4 MMC 5 MMC 6 Internet Information Server IIS %SystemRoot% system32 Logfiles IIS Web 8 IIS 9 ODBC Windows
More informationT - Telecommunication and Internet Protocol Harmonization Over Networks (TIPHON); Service and Network Management Framework; Part 1: Overview and Intro
T - Telecommunication and Internet Protocol Harmonization Over Networks (TIPHON); Service and Network Management Framework; Part 1: Overview and Introduction (DTR/TIPHON-01004-1 V0.1.5) 1.0 2001 8 30 THE
More information2011 Future University Hakodate 2011 System Information Science Practice Group Report Project Name Visualization of Code-Breaking Group Name Implemati
2011 Future University Hakodate 2011 System Information Science Practice Group Report Project Name Group Name Implemation Group /Project No. 13-C /Project Leader 1009087 Takahiro Okubo /Group Leader 1009087
More information"CAS を利用した Single Sign On 環境の構築"
CAS 2 Single Sign On 1,3, 2,3, 2, 2,3 1 2 3 May 31, 2007 ITRC p. 1/29 Plan of Talk Brief survey of Single Sign On using CAS Brief survey of Authorization Environment using CAS 2 Summary May 31, 2007 ITRC
More information25 About what prevent spoofing of misusing a session information
25 About what prevent spoofing of misusing a session information 1140349 2014 2 28 Web Web [1]. [2] SAS-2(Simple And Secure password authentication protocol, ver.2)[3] SAS-2 i Abstract About what prevent
More informationJPGRID-GGF0205 第 5 回 GGF 調査会 globusworld 参加報告 株式会社 SRA グローバルITサービスカンパニー開発部産業第 4グループ 平野基孝 Programs 8 Tutorial 2: Grid Services and Web Services 8 Track
第 5 回 GGF 調査会 globusworld 参加報告 株式会社 SRA グローバルITサービスカンパニー開発部産業第 4グループ 平野基孝 Programs 8 Tutorial 2: Grid Services and Web Services 8 Track 3: Developing & Administrating Globus Toolkit 2.2 8 Workshop 1: Grid
More informationEpson Print Admin
Epson Print Admin NPD5368-02 JA Epson Print Admin Epson Print Admin Epson Print Admin Epson Print Admin Epson Open Platform Epson Open Platform Epson Print Admin Epson Print Admin Epson Print Admin Epson
More informationContents 2008/5/20 5 2 2008/5/20 5 3 2 (FN: false negative) (FP: false positive) 2008/5/20 5 4 Spam DoS 2008/5/20 5 5 (1) IP From IP / Tempfailing 2008/5/20 5 6 (2) IP IP or 2008/5/20 5 7 (3) IP PTR MTA
More informationThunder ADC( ロードバランサー ) における クライアント証明書認証の設定手順 Ver.1.0 2015 年 9 月 Copyright by JCCH Security Solution Systems Co., Ltd., All Rights reserved JCCH セキュリティ ソリューション システムズ JS3 およびそれらを含むロゴは日本および他の国における株式会社 JCCH
More informationIC RDFOWL PIM DB ID GIS RFID 2 ID ID ID XML web.xml GIS,PIM G-XML OWL RDF XML WSDL REST XML ID
YRP IC RDFOWL PIM DB ID GIS RFID 2 ID ID ID XML web.xml GIS,PIM G-XML OWL RDF XML WSDL REST XML 1 3 4 5 6 7 ID ID IC ID ID XML ID RFID ID 1ID ID IP ID ISO ID 2. RFID ARFID BRFID AIC 2 ID 3 3. ID IDIC IC
More informationuntitled
25: Part ( ) Chief Technology Officer mshindo@fivefront.com SNMP MRTG HP/OV RMON INTERNET WEEK 2006/12/08 Copyright 2006 Fivefront Corporation, All Rights Reserved. 2 1 SNMP IfInUcastPkts, IfOutUcastPkts
More informationWS-I Basic Profile 1.0 の概説
WS-I Basic Profile 1.0 Copyright 2003 Hitachi, Ltd.; NEC Corporation; and Fujitsu Limited. All Rights Reserved. 1 1. Basic Profile 2. Basic Profile 1.0 3. (Conformance) 4. MESSAGE 5. DESCRIPTION 6. REGDATA
More informationuntitled
All rights reserved. NTT Copy rights 2007 1 HTTPS 100% 92% 53% S. Schechter et al, The Emperor's New Security Indicators, Proc. IEEE Symp. Security and Privacy, 2007 All rights reserved. NTT Copy rights
More informationConfiguring_01
Symantec Backup Exec Dell EqualLogic Microsoft Exchange Server SQL Server IT / / 24 365 Symantec Backup Exec Advanced Disk-based Backup Option (ADBO) Dell Equal- Logic Microsoft Exchange Server 2003 2007
More informationIW2001-B2 1 Internet Week 2001 ( ) Copyright 2001 All Rights Reserved, by Seiji Kumagai IW2001-B2 2 CodeRed Copyright 2001 All Rights
1 Internet Week 2001 ( ) kuma@isid.co.jp 2 CodeRed 1 3 (EXCEED ) se cu ri ty? 4? 2 5 Web IP Web MP3 6 3 7 1.5Mbps8Mbps 500 MP3 CM VoD 8 4 ADSL (Asymmetric Digital Subscriber Line) () CATV FWA (Fixed Wireless
More information情報セキュリティの現状と課題
443 IT IT 1 1 2 3 4 1 OECD( 1992 Confidentiality Integrity Availability 2 2000.2. http://www.npa.go.jp/hightech/sec_taikei/taikei.htm 3 2000.12. http://www.kantei.go.jp/jp/it/security/taisaku/2000_1215/1215actionplan.html
More informationNTT Communications PowerPoint Template(38pt)
1 IETF の歩き方 2013 年 9 月 6 日 NTTコミュニケーションズ株式会社ネットワークサービス部池尻雄一 2 自己紹介 1996 年 ~ NTT コミュニケーションズ ( 入社当時は NTT) インターネット事業 VPN 事業 クラウド事業等にて主にネットワーク設計を担当 2007 年 ~2012 年まで JANOG 会長 IETF との出会いは 2000 年に始めた MPLS-VPN
More informationのコピー
DNSSEC Masakazu Asama @ NISOC 1 What? DNS SECurity extensions. DNS Resource Record(RR), RR. (Validator) RR. RR. 2 Why? Thread Analysis of the Domain Name System(RFC3833): Packet Interception ID Guessing
More informationPowerPoint プレゼンテーション
Room D Azure Active Directory によるクラウドアプリ連携編 ~ Password Windows Intune Password Windows Intune デスクトップ PC(Windows) に対するガバナンス Azure Active Directory World SaaS Windows Server Active Directory World 業務データ
More informationMicrosoft Word - ‰Z_3_“Ł“è.doc
Introduction of PKI Technology and Device Certificate 要旨 bstract 執筆者 黒崎雅人 (Masato Kurosaki)* 稲田龍 (Ryu Inada)* 宇田川誠 (Makoto Udagawa)* 益井隆徳 (Takanori Masui)** * サービス技術開発本部サービス技術開発部 (Service Technology Development,
More information「暗号/情報セキュリティ」
atsuhiro@iss.isl.melco.co.jp 2002-10-21 PKI PKI: (Public Key Infrastructure) 1976 DES 1978 Privacy Money ()DES, RIJNDAEL, MISTY, KASUMI () RSA, DSA, I Love You ( ) A 55 m m 8 & $ ( ) I Love You A B
More informationIPSJ SIG Technical Report Vol.2015-GN-93 No.29 Vol.2015-CDS-12 No.29 Vol.2015-DCC-9 No /1/27 1,a) 1 1 LAN IP 1), 2), 3), 4), 5) [
1,a) 1 1 LAN IP 1), 2), 3), 4), 5) 1. 2011 50 60 [14] [14] 1 NTT 3-4-1 Shibaura, Minato-ku, Tokyo 108-8118, Japan a) t.nakakura@ntt.com Web P2P(Peer to Peer) P2P [19] 1 World Wide Web Consortium( W3C)
More information