Lernkarten

Karten 33 Karten
Lernende 3 Lernende
Sprache English
Stufe Universität
Erstellt / Aktualisiert 03.01.2019 / 31.01.2019
Lizenzierung Keine Angabe
Weblink
Einbinden
0 Exakte Antworten 33 Text Antworten 0 Multiple Choice Antworten
Fenster schliessen

Recap: What do certificates provide?

- integrity

- authentication

- non-repudiation

Fenster schliessen

Recap: Why are digital signatures important?

And what can be signed? (at least 3 answers)

- PDF, MS-Word

- XML docs

- emails

- image-/binary-files

Fenster schliessen

Recap: Tell the 3 most common algorithms to create a digital signature?

- RSA

- DSA

- ECDSA

Fenster schliessen

Recap: What part of a message is singed?

And which hashing algorithm family should be used?

 

- the message digest (rather than the message itself)

- SHA-2, SHA-3

Fenster schliessen

Recap: What must a Digital Certificate include? (4 answers)

- bind public key to identity

- Path Validation up to root CA / Log Verification (CT-log)

- CP/CPS Policy (for what the cert should be used - ex. encryption, authentication or signing)

- Web Trust (http://www.webtrust.org/item64428.aspx) -->can provide assurance services to evaluate and test whether the services provided by a particular Certification Authority meet these principles and criteria.

Fenster schliessen

CMS (Cryptographic Message Syntax) SignedData:

in which notation the CMS is presented?

what contains a cms signed message? (3 parts)

- ASN.1

 

- digital signature (encrypted hash)

- infromation about the signer (subject name

- serial number

Fenster schliessen

PDF Signature Standard:

What is serial signing of PDFs?

What components are interanlly used for signing?

- serial signing is where each signature comprises the prveious signatures

- PKCS#7 and CMS

Fenster schliessen
Lizenzierung: Keine Angabe

Signature in PDF

When a PDF is signed as below, is this signature embedded or is this a separate file?

What parts of the PDF can be signed

- it is embedded

- signature value may also include additional information such as a signature graphic a time stamp and other data