CompTIA Security+ Full Course: Public Key Infrastructure (PKI)

Certify Breakfast

22 Jan 202343:47

Summary

TLDRThis video script delves into the intricacies of Public Key Infrastructure (PKI), digital certificates, and the validation of online identities. It explains the importance of asymmetric cryptography, the role of private and public keys in encryption and digital signatures, and how PKI ensures the authenticity of public keys. The script also covers certificate authorities, the process of certificate validation, and the various types of certificates, highlighting the significance of trust and security in digital communications.

Takeaways

🔒 Public Key Infrastructure (PKI) is essential for validating digital identities and ensuring the trustworthiness of digital certificates.
🔑 Asymmetric cryptography, using a private and public key pair, is the foundation of PKI, allowing secure communication and identity verification.
🌐 Digital certificates are more than just public keys; they include identity information and are validated by trusted certification authorities (CAs).
🤔 Trust in a CA is crucial; if a CA's private key is compromised, all certificates signed by that CA may be considered invalid.
📜 Certificates contain several key pieces of information, including the public key, identity information, and usage purposes, which are all digitally signed by the issuing CA.
⛓ Certificates are often part of a hierarchy, with root, intermediate, and leaf CAs, to distribute trust and minimize the risk of a single point of failure.
📝 Certificate Signing Requests (CSRs) are used to request a CA to issue a certificate, containing identity information and a public key that the CA must verify.
🔄 Certificates have a lifecycle that includes creation, storage, usage, and eventual revocation or renewal, with expiration dates being a key aspect of certificate management.
🛡️ Certificate pinning (HBKP) is a security measure to prevent man-in-the-middle attacks by embedding expected certificate information within an application.
📁 Certificates can be stored in various formats, including PEM (ASCII), DER (binary), and PFX/P12 (which may include both public and private keys), each with its own use cases and security considerations.
🛠️ Tools like OpenSSL are vital for generating, managing, and validating certificates, offering a command-line approach to certificate creation and inspection.

Q & A

What is Public Key Infrastructure (PKI) and why is it important?
-Public Key Infrastructure (PKI) is the infrastructure that enables the validation of identities within digital certificates. It's crucial because it ensures that when a digital certificate is presented, there's a reliable method to verify the information it contains, thus confirming the identity of the certificate holder.
How does asymmetric cryptography play a role in PKI?
-Asymmetric cryptography is foundational to PKI as it uses a pair of keys: a private key that should be kept secure and a public key that can be freely shared. The public key is used for encryption and verification of digital signatures, while the private key is used for decryption and signing, thus connecting the keys to the unique identities of individuals.
What is a digital certificate and how does it relate to a public key?
-A digital certificate is a file that contains a user's public key and identity information, such as their name and organizational details. It's essentially a container for the public key and serves as a way to validate the identity of the key's owner, ensuring that the public key is associated with a legitimate and verified identity.
Why can't anyone trust a public key simply by downloading it from the internet?
-Simply downloading a public key from the internet isn't trustworthy because an attacker could intercept the key exchange and replace the original key with their own. PKI helps prevent this by using certificates that are signed by trusted entities known as Certificate Authorities (CAs), which validate the authenticity of the public key.
What is a Certificate Authority (CA) and how does it sign a digital certificate?
-A Certificate Authority (CA) is a trusted entity that issues digital certificates. It signs a digital certificate by calculating a hash of the certificate's content and then encrypting that hash with the CA's private key. This digital signature can be validated using the CA's public key, which, if trusted, confirms the certificate's authenticity.
What is the purpose of a digital signature in the context of PKI?
-A digital signature serves to authenticate the identity of the signer and to ensure the integrity of the message or document being signed. It involves encrypting a hash of the message with the signer's private key. Anyone with the signer's public key can decrypt the hash and verify it against the original message, thus confirming the signer's identity and that the message has not been altered.
Why are there different levels of validation for issuing web server certificates?
-Different levels of validation exist to ensure the security and authenticity of web server certificates. Domain validation checks ownership of the domain, while extended validation further verifies the legal identity of the entity requesting the certificate. This helps prevent the issuance of certificates for phishing or spoofed domains.
What is a self-signed certificate and why might it be used?
-A self-signed certificate is a digital certificate that is signed by the same entity whose identity it certifies, rather than by a trusted CA. It might be used in internal networks, lab environments, or proof-of-concept scenarios where a trusted third-party CA is not required or available.
What is the process of certificate revocation and why is it necessary?
-Certificate revocation is the process of declaring a valid certificate no longer valid before its scheduled expiration. It is necessary when a private key is compromised, a certificate is no longer needed, or in cases where a certificate must be immediately invalidated for security reasons.
How do clients know if a certificate has been revoked?
-Clients can check if a certificate has been revoked by referring to a Certificate Revocation List (CRL) provided by the issuing CA or by using the Online Certificate Status Protocol (OCSP), which allows for real-time validation of a certificate's status.
What is the purpose of certificate pinning and how does it work?
-Certificate pinning, also known as HPKP (HTTP Public Key Pinning), is a security technique used to prevent man-in-the-middle attacks by associating a certain public key with a certain web server. It involves embedding the public key or hash of the key in the application code, allowing the browser to verify if the presented certificate matches the expected key.
What are the different file formats for storing certificates and what are their uses?
-Certificates can be stored in various file formats such as DER (binary format), PEM (ASCII format), CRT/CER (which can be either binary or ASCII but don't specify which), PFX/P12 (for bundling a private key with a certificate), and P7B (for storing the entire certificate chain). These formats serve different purposes, from ease of transportability and readability to security and comprehensiveness in certificate chain storage.
How can one generate a self-signed certificate using OpenSSL?
-A self-signed certificate can be generated using OpenSSL with a command that specifies the key pair generation and the creation of a self-signed certificate with a specified expiration date. The certificate is then outputted in a chosen format, such as PEM, which is easily readable and transportable.

Outlines

00:00

🔐 Public Key Infrastructure and Digital Certificates

The paragraph introduces the concept of Public Key Infrastructure (PKI) as a system for validating digital identities through certificates. It explains that while anyone can generate a digital certificate, PKI is essential for vouching for one's identity. The paragraph discusses asymmetric cryptography, the roles of private and public keys in encryption and digital signatures, and the importance of having a trusted authority to validate these keys. It also touches on the risks of public key interception by attackers and how PKI helps prevent such scenarios by ensuring the authenticity of public keys through certificates issued by trusted entities.

05:00

🛡️ Certificate Authorities and Trust Hierarchy

This paragraph delves into the role of Certificate Authorities (CAs) in the PKI ecosystem. It explains how CAs sign digital certificates to validate the identity of individuals or entities. The process involves CAs encrypting a hash of the certificate with their private key, allowing others to verify its authenticity using the CA's public key. The paragraph also discusses the importance of trusting CAs and the concept of a trust hierarchy, where operating systems and browsers maintain a list of trusted CAs. It further explains the potential risks if a CA's private key is compromised and the measures taken to mitigate these risks, such as the use of local CAs within enterprises.

10:02

🔄 Certificate Lifecycle and Hierarchy of Trust

The paragraph discusses the lifecycle of digital certificates, from creation to revocation. It explains the process of generating a certificate signing request (CSR) and the validation process that CAs undertake before issuing a certificate. The concept of a hierarchy of trust is further explored, with the introduction of root, intermediate, and leaf CAs, which create a chain of trust. The benefits of this model, such as taking the root CA offline for security, are highlighted. The paragraph also touches on the registration process with CAs, which involves identity verification before certificates can be issued.

15:03

📄 Certificate Contents and Validation

This paragraph provides an in-depth look at the contents of a digital certificate, including the public key, identity information, and various fields that describe the certificate's purpose and constraints. It explains the importance of the subject and subject alternative names (SANs) in identifying the entity a certificate represents. The paragraph also discusses key usage fields and extended key usage fields, which define the permitted uses of a certificate. Additionally, it covers the concepts of critical and non-critical extensions within a certificate and their implications for validation.

20:03

🌐 Domain Validation and Certificate Types

The paragraph examines the process of domain validation, which is a security measure to ensure that a certificate applicant is the legitimate owner of the domain they claim. It contrasts domain validation with extended validation for higher-profile websites. The paragraph also outlines various types of certificates, such as those for users, servers, applications, and self-signed certificates, explaining their purposes and the contexts in which they are used. It also touches on the dual authentication process for both users and machines in network access scenarios.

25:04

🔑 Key Management and Storage

This paragraph focuses on the challenges and methods of secure key management. It discusses the importance of securely storing private keys, the risks associated with key backup and storage, and the strategies to mitigate these risks, such as key escrow and segmented storage. The paragraph also covers the process of certificate renewal and revocation, highlighting the procedures followed when a certificate expires or is compromised.

30:05

🗂️ Certificate Formats and Management

The paragraph provides an overview of different certificate file formats, such as DER, PEM, CRT, CER, PFX, P12, and P7B, explaining their purposes and how they store certificate data. It also discusses the tools and commands used to manage certificates, particularly focusing on OpenSSL utilities for tasks like generating key pairs, creating self-signed certificates, and validating certificates. The paragraph concludes with examples of OpenSSL commands that can be used for certificate management.

35:06

🛡️ Certificate Security and Revocation Methods

This paragraph discusses the importance of certificate security, the process of certificate expiration, and the methods for certificate revocation. It explains the use of Certificate Revocation Lists (CRLs) and the Online Certificate Status Protocol (OCSP) as two primary methods for managing and validating the status of certificates. The paragraph also introduces the concept of OCSP stapling, a process that allows web servers to respond to certificate validation queries on behalf of CAs. Additionally, it touches on the security measure of certificate pinning as a defense against man-in-the-middle attacks.

Mindmap

Keywords

💡Public Key Infrastructure (PKI)

Public Key Infrastructure is a system that enables the secure communication and identification of entities across a network. It is central to the video's theme as it underpins the validation of digital certificates and identity verification. In the script, PKI is described as the infrastructure that allows for the validation of identity within a digital certificate, emphasizing its role in cybersecurity.

💡Digital Certificate

A digital certificate is an electronic document used to establish the identity and credentials of an individual, organization, or server. It is a key concept in the video, illustrating how entities can be authenticated in a digital space. The script mentions that anyone can generate a digital certificate, but the validation of this certificate is what truly matters, highlighting the importance of PKI.

💡Asymmetric Cryptography

Asymmetric cryptography refers to cryptographic systems that use two different keys: a public key for encryption and a private key for decryption. The video discusses this concept as the foundation for connecting keys to unique identities, with the script noting that the private key should be kept safe while the public key can be shared freely.

💡Digital Signature

A digital signature is a cryptographic mechanism used to verify the authenticity and integrity of a digital message or document. The video explains how digital signatures are created by encrypting a hash of a message with a private key, and the script provides an example of how this process helps in proving one's identity to another party.

💡Certificate Authority (CA)

A Certificate Authority is a trusted entity that issues digital certificates, validating the identity of the certificate holder. The script explains the role of CAs in the PKI hierarchy, emphasizing their importance in signing digital certificates and establishing trust among users.

💡Private Key

A private key is a secret component in asymmetric cryptography, used for decryption or for signing digital data. The video script discusses the importance of keeping the private key secure and how it is used in conjunction with the public key for secure communication and identity verification.

💡Public Key

The public key is the counterpart to the private key and can be freely distributed. It is used for encryption or to verify digital signatures. The script clarifies that while anyone can encrypt data with a public key, only the holder of the corresponding private key can decrypt it.

💡Certificate Revocation List (CRL)

A Certificate Revocation List is a record maintained by a CA that contains serial numbers of certificates that have been revoked before their scheduled expiration date. The video script describes CRL as a method used by CAs to inform users about certificates that are no longer valid.

💡Online Certificate Status Protocol (OCSP)

The Online Certificate Status Protocol is a protocol used to obtain the revocation status of a certificate. The script explains OCSP as a dynamic method for providing certificate status information, offering a more immediate response compared to CRLs.

💡Self-Signed Certificate

A self-signed certificate is a digital certificate that is signed by the same entity whose identity it certifies. The script mentions self-signed certificates as being typically used in internal networks or lab environments, where they are trusted by configuration but not inherently by clients outside the issuing domain.

💡Certificate Pinning

Certificate pinning, also known as HTTP Public Key Pinning (HPKP), is a security mechanism that helps prevent man-in-the-middle attacks by associating a certain public key with a certain web server. The script discusses this as a method to ensure that the certificate presented by a server matches a pre-agreed key, enhancing security.

Highlights

Public Key Infrastructure (PKI) is essential for validating digital identities through certificates.

Anyone can generate a digital certificate, but PKI verifies the identity behind the public key.

Asymmetric cryptography with private and public keys is the foundation of connecting keys to identities.

Public keys can be freely shared, while private keys must remain secure for digital signatures and encryption.

Digital signatures authenticate identity by encrypting hashes with the private key.

PKI protects against man-in-the-middle attacks by ensuring the validity of public keys.

Digital certificates contain more than just the public key; they include identity information and are signed by a trusted authority.

Certificate Authorities (CAs) validate and sign digital certificates, establishing trust.

Trust in CAs is hierarchical, with root, intermediate, and leaf CAs creating a chain of trust.

Operating systems and browsers have built-in lists of trusted CAs for validating certificates.

Local CAs can be used within enterprises for an internal trust network.

Certificates have a lifecycle, including creation, storage, and eventual revocation or renewal.

Secure storage of private keys is critical to prevent exposure and ensure data access.

Certificate revocation lists (CRLs) and the Online Certificate Status Protocol (OCSP) are methods for checking certificate validity.

HTTP Public Key Pinning (HPKP) prevents man-in-the-middle attacks by pinning certificates in application code.

Certificates are stored in various formats such as PEM, DER, CRT, CER, PFX, P12, and P7B for different uses.

OpenSSL is a utility used in Linux for generating and managing certificates.

The video provides a comprehensive overview of digital certificates, essential for understanding cybersecurity and preparing for exams.

Transcripts

00:00

[Music]

00:00

foreign

00:02

[Music]

00:15

now I did talk about a lot of stuff in

00:18

the previous video and there's no way

00:20

you can talk about certificates and

00:22

public keys and signatures and so on

00:25

without mentioning public key

00:27

infrastructure because that's the actual

00:28

infrastructure that allows us to

00:30

validate the identity within a digital

00:33

certificate because anyone can generate

00:35

a digital certificate at the end of the

00:37

day is just a public key and in a file

00:40

anyone can generate that content but

00:42

it's all about who is able to vouch for

00:44

us for our identity so that when we use

00:47

that digital certificate when we present

00:49

it to somebody else they can be sure and

00:51

they have a valid method of verifying

00:54

the information in that certificate so

00:56

pki or public key infrastructure is the

00:59

the network and all the elements that

01:01

come into play whenever we want to

01:03

validate somebody's identity okay so to

01:06

have an actual working public

01:08

infrastructure this infrastructure that

01:10

helps us validate identities we need to

01:13

find a way to to connect the keys that

01:16

we're using for all this encryption and

01:18

signing business in a way to connect

01:20

these keys to our unique identities to

01:22

us as as people in the end so in order

01:25

to do this we're going to rely on the

01:28

concept of asymmetric cryptography based

01:30

on a private key and a public key so you

01:33

already know that you should keep the

01:34

private key safe only for you you should

01:36

already know that you can freely share

01:38

the public key with anyone out there and

01:40

you know that whatever one key encrypts

01:42

the other one can decrypt the same goes

01:44

for digital signatures as well because

01:46

even with digital signatures we're

01:48

encrypting hashes of our messages

01:50

so we know that these keys can be used

01:52

in encryption for example if I want to

01:55

send some encrypted information to you I

01:57

can request your public key through a

01:59

certificate for example and I can use

02:01

that public key to encrypt data that I

02:03

know that only you can decrypt with your

02:05

private key all right that's one use

02:07

case the Second Use case is when I want

02:10

to prove my identity to someone so I

02:11

need to do something with my private key

02:14

that I can then later on show that

02:16

something to another person and they

02:19

would be able to determine that indeed I

02:22

was the one that performed that

02:23

operation using my private key so it has

02:25

to be some piece of information that was

02:27

digitally encrypted or signed by me so

02:30

I'm going to authenticate myself using a

02:33

digital signature how do we do this well

02:35

we can watch the previous video about

02:36

this but long story short we're going to

02:38

take a message we're going to Hash that

02:40

message and we're going to encrypt it

02:42

with our private key now whoever

02:45

receives that message along with the

02:46

encrypted hash is able to decrypt the

02:48

hash validate the fact that the hash

02:50

matches with the content that they

02:52

receive and they can determine this way

02:54

that that piece of data actually came

02:56

from me because I'm the only person who

02:59

is able to sign it in such a way so that

03:01

my public key can be used to validate

03:03

its identity I am the only holder and

03:05

owner of my private key and another

03:07

benefit fit of this is that absolutely

03:09

anyone up there can use the same process

03:11

to validate your identity you don't need

03:13

to set up a secure Channel you don't

03:15

need to communicate any secure

03:16

information you just really give up

03:18

anyone your public key and if they are

03:21

able to decrypt your digital signature

03:22

or any kind of content encrypted by your

03:25

private key that's how your identity is

03:28

being proven now the problem we have

03:30

here is that well we keep saying that

03:34

you're sharing that public key with

03:35

anyone but but simply getting a hold of

03:38

somebody's public key or downloading the

03:41

public key from a website that says that

03:43

this is Andrew's public key that's not a

03:45

guarantee of an actual identity an

03:48

attacker could potentially intercept

03:49

those public keys while Alice sends her

03:51

key to blob and intercept that public

03:53

key and injects the attacker's key

03:55

instead of it so how do we protect

03:57

against this type of scenario well pki

03:59

addresses this exact problem the problem

04:02

of validating the information that we're

04:04

receiving related to a public key I'm

04:07

basically validating whatever comes

04:09

inside of a certificate so you can say

04:10

that pki is a way of validating the

04:13

ownership of a public key because a

04:16

public key can be freely distributed and

04:18

downloaded

04:19

but we need to know it's the right

04:20

public key and the way apki is

04:23

implemented is by using digital

04:24

certificates which is just a wrapper

04:26

just a container for a public key now

04:29

that container actually includes a lot

04:31

more Fields than just the public key it

04:33

includes some information that uniquely

04:34

identifies you as a person your your

04:37

name your country maybe the scenarios in

04:40

which that certificate can be used for

04:42

like for digital signatures or for

04:44

encrypting files and so on and the most

04:46

important part about the certificate is

04:48

that it has to be vowed by somebody else

04:51

it has to be

04:52

confirmed by an higher level Authority a

04:55

certification Authority that the

04:57

contents of that digital certificate are

05:00

real valid and true so what we do in

05:03

order to validate this well we ask a

05:05

certificate Authority that everybody

05:06

trusts to sign our own digital

05:08

certificate and how does the ca actually

05:10

sign our certificate well the the same

05:13

way we sign anything with a digital

05:15

signature right the ca calculates a hash

05:18

of our certificate and then encrypts it

05:20

with the ca's private key now everyone

05:23

else on the internet whoever receives

05:25

our certificate sees the digital

05:27

signature in it can freely download or

05:29

they most likely already have the public

05:31

key of the well-known Cas out there they

05:34

use the public key to decrypted Hash

05:35

they validate the hash they validate the

05:37

signature and they know that the

05:38

contents in that certificate that state

05:40

that this is Andrew and this is his

05:42

public key are to be trusted and of

05:45

course the cas must be trusted by anyone

05:48

because if you don't trust the ca then

05:50

you're back to square one how do I trust

05:52

that I am Andrew or how do I trust that

05:54

the this is very sign the ca that I'm

05:56

supposed to trust it's the same problem

05:58

I mean you have to trust at some point

06:00

in order to create this hierarchy of

06:03

trust from that point on and if the ca

06:05

is trusted then we can use this

06:07

probability to validate the certificate

06:09

and then trust the identity of the one

06:11

person that is actually mentioned in

06:13

that certificate as well so that proves

06:15

that my certificate is a valid one

06:18

now as you mentioned in a previous video

06:20

most operating systems and browsers out

06:22

there have a built-in list of trusted

06:24

Cas so everything that comes signed by

06:27

those trusted Cas you know even in a

06:30

deeper level hierarchy I mean you could

06:32

have a certificate that is uh signed by

06:34

one CA and then that's the a certificate

06:37

is signed by another CA and so on and so

06:38

forth well at the end of that hierarchy

06:40

there has to be a CA that you trust in

06:43

your browser in your operating system so

06:45

this is a screenshot right here shows

06:47

the list of trusted root certification

06:50

authorities as you can see here on the

06:51

left hand side which are built into in

06:54

my installation of windows in the

06:55

previous video we saw that there's a

06:57

separate list maintained for example for

06:59

each and every browser out there for

07:01

example Firefox Chrome Opera and so on

07:03

now a CA is responsible for generating

07:06

digital signatures which actually end up

07:08

as being valid certificates but again

07:11

anyone can do this right it's basically

07:14

just a piece of software that generates

07:15

digital signatures you can install a

07:18

certificate Authority locally on your

07:19

own laptop if you wish in fact in many

07:22

companies we do have local certification

07:24

authorities which are local to the

07:27

Enterprise to the network inside of that

07:30

company only which means that we can

07:33

actually have our own little island of

07:35

trust so that everything that is signed

07:37

by a local CA inside of our network is

07:40

automatically trusted now of course if

07:42

we try to sign any resources that need

07:44

to be checked or validated outside of

07:46

our local network like over the Internet

07:48

that signature that digital signature is

07:51

not going to pass validation but within

07:53

a company if everybody is configured to

07:56

trust the the ca that is local to that

07:59

company that is locally installed in in

08:01

the company's data center than any other

08:03

certificates that we're generating using

08:05

that CA in any certificates that we're

08:07

we're signing using that CA are going to

08:10

be automatically trusted but if you go

08:11

outside in the wild wild internet you

08:14

want to communicate from one company to

08:16

the next then you have to rely on some

08:18

public CA out there the one that is

08:21

trusted and recognized by everyone else

08:23

now the ca actually does a bit more than

08:25

just generating digital signatures

08:27

normally in the process of generating a

08:29

certificate that has to be some sort of

08:31

a validation process because I I could

08:33

be submitting a certificate for for it

08:36

to be signed to to very sign and they

08:40

should probably ask me for some proof

08:42

like providing some sort of ID that

08:44

proves that I'm actually Andrew then

08:46

that is actually my name or that I

08:48

really own the website for which I'm

08:50

trying to get my certificate signed so

08:52

there has to be some sort of a

08:54

registration process where you have to

08:56

pass some checks in order for your

08:58

certificate to be generated now the CEO

09:00

isn't by themselves are not just

09:02

isolated Islands out there on the

09:04

internet we usually have a hierarchy of

09:06

CAS in which all these Cas are related

09:08

to one another in a hierarchy of trust

09:12

so to start with the simplest example

09:14

out there from a single CA just one

09:16

single CA now you could have one single

09:19

CA generating all your certificates and

09:21

that's it now the problem is that the ca

09:23

of course is going to be exposed

09:25

vulnerable because everyone interacts

09:27

with it and potentially open to exploit

09:30

and compromise and if a CA gets

09:32

compromised if the private key of A CA

09:34

gets compromised the rule says that

09:37

every certificate ever generated by that

09:40

CA becomes invalid that's because if the

09:43

private key has been compromised then

09:44

the private key now could be in the

09:46

hands of somebody else who is using that

09:49

private key to generate

09:51

fake certificates or certificates that

09:54

don't include real information so we

09:57

lose that trust that we should have had

09:59

from the very beginning in that CA

10:02

we don't know which certificates are now

10:04

valid generated by that CA and which

10:05

certificates are not valid so we

10:07

invalidate them all the moment the

10:09

private key gets compromised so we call

10:11

this a single point of failure right one

10:13

CA doesn't sound like a very good idea

10:15

so we have the second scenario where we

10:17

rely on a hierarchy of CAS so we have

10:20

multiple Cas each one signing the

10:23

certificates of those below them which

10:26

creates a hierarchy in which we have

10:27

root Cas we have intermediate Cas and

10:30

then we have Leaf Cas at the end of this

10:33

hierarchic tree now this model creates

10:35

what is called as certificate chaining

10:38

or a chain of trust that is because each

10:40

and every certificate that is generated

10:41

by a leaf CA can be traced back to its

10:45

parent in the hierarchy of trust up to

10:47

the root CA that actually signed all

10:50

those intermediate and leave cas

10:52

why do we need to over complicate this

10:54

so I mean what's the benefit instead of

10:57

having just the one single Routier well

10:59

the benefit is that by Distributing this

11:02

infrastructure this way at some point we

11:05

can safely take the root CA completely

11:07

offline

11:08

I mean we don't want to keep it online

11:12

and exposed and open to attacks because

11:16

otherwise it becomes the same single

11:18

point of figure that we had with just

11:19

one CA so once we have instantiated the

11:23

intermediate and leave Cas that are

11:26

actually going to deal with the

11:28

certificate generation process for us we

11:30

can safely bring the root CA offline and

11:32

completely disconnect it from the

11:34

network that way we can be close to 100

11:36

sure that the private key of that CA is

11:38

never going to be compromised even more

11:41

so if at some point it just happens that

11:44

one of the leaf Cas gets compromised

11:46

well we're not going to be losing the

11:48

all the certificates that were generated

11:50

within that pki we're just invalidating

11:53

the certificates generated by that

11:54

specific leave CA not by all the other

11:58

ones

11:59

and you can easily view this even in

12:01

Windows if you open the certificate

12:02

store and navigate to one of the

12:04

well-known root certificates out there

12:05

or just select one of the certificates

12:07

that you're using for a specific website

12:09

you gotta find a tab in there that says

12:11

certification path in this case right

12:13

here we actually have two additional Cas

12:17

so one root CA and one leaf CA the

12:20

GoDaddy root certificate Authority and

12:21

the GoDaddy secure certificate Authority

12:23

which in turn has actually signed the

12:26

comptia.org certificate that you're

12:28

you're receiving whenever you're

12:30

visiting the the CompTIA website and as

12:32

far as the route goes as we said before

12:34

we can safely take it offline because

12:35

we're we're only using your root CA to

12:39

create other

12:40

sub ca's other intermediariess other

12:43

leaves yeah so we're not signing end

12:45

user certificates we are just empowering

12:48

other Cas to do this for us so once

12:52

you've generated you've generated the

12:53

the certificates you've signed the

12:55

certificates of all your necessary Cas

12:57

you can safely bring it offline now the

13:00

process of registration when it comes to

13:01

Cas is basically a process of

13:03

authentication over the process of

13:05

creating an account with that CA so that

13:08

your identity is validated and then you

13:10

gain the rights of requesting further

13:12

certificates for example once I have

13:14

proven my identity as I am Andrew right

13:17

to to my favorite CA I can then ask that

13:19

CA well give me a certificate for email

13:21

signatures give me one for a web server

13:24

that I own give me one for disk

13:26

encryption and so on so that's the

13:28

registration part it's the identity

13:30

checks I wouldn't say background checks

13:32

actually but it's a it's a sort of

13:33

validating the the true identity of the

13:36

entity that is requesting that

13:38

certificate for example in case of the

13:40

people who are want to use a digital

13:42

certificate to sign their email you

13:44

might be required to present some sort

13:46

of an identification like a government

13:48

issued idea or in case of a website if

13:52

you want to secure your website to allow

13:54

clients to connect over https and you

13:57

want to install a certificate on that

13:58

website you have to prove ownership of

14:00

that website by publishing something in

14:03

the DNS domain or by sending an email

14:04

from the domain that has the same name

14:07

as the website and anyway you have to

14:10

prove that you're an admin and you are

14:12

authorized to request a certificate for

14:15

that specific domain

14:16

there can be even simpler situations

14:19

such as in Microsoft Windows Active

14:21

Directory there are policies in active

14:24

directory which allow users to generate

14:27

a certificate simply by authenticating

14:29

themselves inside of the domain so once

14:32

you you authenticate using a username

14:34

and a password or a smart card or

14:35

whatever you're using to log into

14:37

Windows once you're authenticated in the

14:39

domain you can freely request as many

14:41

certificates as you want for example for

14:43

a BitLocker or disk encryption

14:45

but the official method by which any

14:48

person can receive a certificate from a

14:50

CA is by filling in a form basically

14:53

that could be digital form of course

14:55

which is called a CSR that's a

14:57

certificate signing request I'm

14:58

requesting you you my Dr CA to sign the

15:02

certificate for me that's a CSR now in

15:05

digital form don't imagine it's a it's

15:07

not a PDF file or anything like that

15:09

it's basically an ASCII file it's an

15:11

ASCII string of characters encoded

15:14

actually in base64. and that file

15:17

includes all the information that I want

15:19

to end up with in my resulting

15:20

certificate such as my identity my name

15:22

maybe the domain names that I want to

15:24

cover if it's a web server certificate

15:25

and of course my public key

15:27

and that's the information that the ca

15:29

actually has to validate before actually

15:31

emitting that certificate the

15:33

information submitted in the CSR now

15:36

again in some cases simply because the

15:38

this process of generating and receiving

15:41

csrs creates the ca to be extremely

15:44

exposed because it constantly receives

15:46

input information from from outside

15:49

users the process of managing csrs is

15:52

sometimes outsourced to a different

15:55

entity which is called a registration

15:57

Authority this one is also part of the

15:59

pki but it's a separate server separate

16:01

entity that only deals with receiving

16:03

and validating csrs they don't actually

16:06

emit the end user certificates but they

16:09

do give a verdict as whether the CSR is

16:12

valid or not so finally if we pass all

16:14

those checks we end up with a digital

16:17

certificates received from the CA and

16:20

signed by that CA so it's basically just

16:22

a container for your public key with

16:23

some additional information that

16:25

identifies you as a person or as a

16:28

machine as web server as an email server

16:30

depending on the use case for that

16:32

specific certificate generally

16:34

certificates nowadays are based on the

16:36

x509 ietf standard remember that one but

16:40

there is also an additional set of

16:41

Standards created by RSA you have the

16:43

same name as the algorithm which is pkcs

16:47

a very generic name that stands for

16:49

public key cryptography standards

16:51

standards themselves Define What fields

16:55

are allowed within a certificate where

16:56

they should be positioned what data type

16:58

is accepted in there and the use case is

17:00

acceptable by each certificate type

17:03

now among the information that is

17:05

available within a certificate we're

17:07

going to find a serial number this is

17:08

just a unique number that uniquely

17:10

identifies the certificate very useful

17:12

when we want to check the validity of a

17:14

specific certificate or when we want to

17:16

revoke it from the ca so the ca can

17:19

actually publish a list or respond to

17:21

some requests that are going to say that

17:24

this specific list of serial numbers or

17:26

this specific list of certificates

17:27

basically are not valid anymore have

17:30

been retired we also have the signature

17:33

algorithm of the ca the algorithm that

17:35

was used to sign that certificate why do

17:38

we need this well we need to know the

17:39

signature algorithm so that we can check

17:41

that signature right we need to

17:42

calculate the hash on our own so that we

17:45

can have something to compare it with so

17:47

we need to know the algorithm that was

17:48

used from the very beginning

17:49

specifically we need to know the

17:51

signature hash algorithm as well we're

17:53

going to find the issuer in there that's

17:55

basically the name of the ca who signed

17:57

that certificate or who issued the

17:59

certificate we're going to see a Time

18:01

range described as a valid 2 and valid

18:04

from fields which indicates the period

18:06

of time in which the certificate is

18:08

valid all certificates out there have an

18:10

expiration date

18:11

we also get this subject that is the

18:14

entity that the certificate represents

18:16

it might be your name it might be your

18:17

email address if you're using for email

18:19

signing it might be part of the web

18:22

server fully qualified domain name if

18:24

you plan on using it in a network device

18:26

of course we get the public key because

18:28

we're basically talking about a wrapper

18:30

for the public key so it has to be in

18:32

there somewhere and some more extensions

18:34

couple of them will be covered in the in

18:36

the next sections

18:38

so going back to the topic of that

18:39

subject because that's the identifier of

18:42

the actual person or entity or server

18:45

that is using that certificate we have a

18:47

number of ways in which we can describe

18:49

that subject information first of all we

18:51

had had with an emphasis on the past

18:54

time here CN that's common name usually

18:57

this one was designed to be the fully

19:01

qualified domain name of the of the

19:04

website or of the server that

19:05

certificate is supposed to belong to now

19:08

since the CN actually did not specify an

19:12

exact syntax that is to be followed it

19:15

is nowadays deprecated because some

19:17

browsers some validation entities had

19:19

some problems in uh in double checking

19:22

this field and actually figuring out

19:24

which entities the certificate belongs

19:26

to so nowadays it was replaced with

19:28

something called Sam subject alternative

19:30

names and now the name itself might

19:34

suggest that a San is uh is just an

19:37

alternative to

19:38

to the actual subject no it's just

19:41

basically a list of all the subjects

19:43

covered by the certificate itself

19:47

in the example here on the slide we can

19:49

see a certificate from CompTIA which has

19:51

a subject section that uses the CN field

19:53

you can see here it's

19:54

cnlearn.comti.org now on the other hand

19:56

we have a certificate from cisco.com you

19:59

get the certificate if you access

20:00

cisco.com in your browser and there's a

20:02

section of subject alternative names

20:05

and you can see here it's an actual list

20:07

of alternative domain names that this

20:11

certificate can protect so if you visit

20:12

any of the Cisco www.cisco.com media

20:15

files score static Cisco the websites or

20:18

the browser visits them in the

20:19

background then it's going to use them

20:22

and validate those destinations by using

20:24

this same certificate now from a more

20:27

practical point of view listing all the

20:28

domains in here just like Cisco did is a

20:31

bit more secure but in reality you're

20:34

going to find wild card notations in

20:36

here like

20:37

star.cisco.com something like that which

20:39

implies that any subdomain that belongs

20:41

to that parent domain is going to be

20:43

protected by that certificate not all

20:45

certificates are equal that is not all

20:47

certificates have the same type the type

20:50

actually refers to the key usage what

20:52

can that certificate be used for could

20:54

we use it for signing emails for

20:56

encrypting files for encrypted disk and

20:58

so on and so forth and these user

21:00

scenarios are described in the key usage

21:03

field as part of the certificate itself

21:05

and of course since the contents of the

21:07

certificate are digitally signed by the

21:09

ca

21:10

so are validated first by the CA and

21:12

then the digital signature is applied in

21:13

there you cannot just freely change this

21:16

use cases for a specific certificate if

21:18

a certificate was generated only for

21:20

email signing then you will not be able

21:22

to use that certificate for disk

21:24

encryption

21:25

alternatively we can find a field called

21:28

extended key usage or the way Microsoft

21:30

likes to call it if you open up a

21:32

certificate in Windows is enhanced key

21:34

usage which is just another way a more

21:37

flexible way of defining use cases for

21:39

the certificate but the end result is

21:41

pretty much the same

21:42

so among the use case examples that we

21:45

can select inside of this key use it or

21:47

extended key usage field are server

21:49

authentication client authentication can

21:51

use this for code signing that's the

21:54

same type of certificate by the way that

21:55

is used when you're downloading and

21:57

validating applications downloaded from

21:59

an official app store on your mobile

22:00

device that's also going to be validated

22:03

using some sort of a code signing

22:04

certificate and email protection now you

22:07

can see that we have a couple more

22:08

extensions apart from these standard

22:10

fields that we find in the certificate

22:12

now of course these extensions can be or

22:15

might not be recognized by all the

22:18

clients and all the software out there

22:20

which brings us to the discussion about

22:22

critical and non-critical extensions in

22:24

a certificate if an extension is tagged

22:27

as critical then the application that

22:29

processes the certificate that uses it

22:31

in any way must be able to recognize

22:33

that extension if the application

22:35

doesn't recognize the extension maybe

22:37

it's an optional one it shouldn't use

22:39

the certificate at all it should reject

22:41

it completely and you can probably guess

22:43

what non-critical extension means well

22:45

it's a non-critical extension even if

22:47

the application doesn't recognize that

22:48

specific extension it's still going to

22:50

use the rest of the fields in the

22:51

certificate and the way the application

22:52

was programmed to use that certificate

22:55

even if it doesn't understand its

22:56

contents 100 percent

22:58

now when it comes to websites the

23:00

certificate that the website presents to

23:02

all its clients to all their browsers is

23:05

basically a proof of the website's

23:06

identity which is very important if

23:08

you're interacting with a with an

23:10

e-commerce site or with a banking site

23:11

or with any site that requires you

23:13

provide some sensitive data personally

23:15

identified or confidential information

23:17

so you need to validate the identity of

23:19

the entity that you're talking to that

23:21

you're actually communicating with

23:23

you're giving your credit card details

23:25

to Amazon and not to I don't know Amazon

23:28

with double o's at the ends.com

23:31

and that's a real problem actually there

23:34

are situations where anybody can just

23:36

set up a new domain name and perhaps

23:39

even submit a certificate signing

23:42

request for that new domain name such as

23:44

amazon.com to a real CA trusted by

23:47

anyone and they would get a valid

23:49

certificate for that website which then

23:51

they can use to impersonate amazon.com

23:55

and steal credit card data so we have

23:57

different levels of security involved

23:59

whenever the checks are being performed

24:01

before actually emitting web server

24:03

certificates from publicly trusted cas

24:07

and the way we can Implement these

24:08

checks we have two methods we have

24:10

domain validation which is a very simple

24:12

check which uh just proves that you're

24:14

the owner of the domain that you're

24:16

trying to register a certificate for it

24:18

might require you to fill in some DNS

24:21

records temporarily that can be publicly

24:23

checked by the ca or by the ra the

24:25

registration Authority or you might be

24:28

required to send an email from the

24:29

domain name with the same name as the

24:31

the website you're trying to register

24:33

the certificate for now for a higher

24:35

profile websites there's also an

24:37

additional more complex process called

24:39

extended validation which checks the

24:42

legal ownership the legal identity of

24:45

the owner of that of that resource that

24:47

we're trying to create a certificate for

24:48

and we avoid situations such as those

24:51

that are trying or attempting to create

24:54

valid certificates for spoofed or or

24:56

phishing domains

24:58

now the other certificate types that

24:59

you're going to encounter because users

25:01

and websites are not the only ones that

25:03

need certificates we're going to start

25:06

with users all right we can generate

25:08

certificates for users for them to be

25:10

able to use them for email signing or

25:12

for this encryption we can also generate

25:14

certificates for servers and

25:15

applications we can use those

25:17

certificates to prove the identity of

25:19

the server or the application that is

25:21

being accessed you can also use

25:22

certificates to sign code files and

25:25

applications and we can also have

25:27

self-site certificates because nobody

25:29

stops you from generating a certificate

25:31

that you are signing by yourself this

25:34

comes back to the discussion about the

25:36

napkin one or two videos ago I mean it's

25:39

nobody's going to trust it right

25:40

nobody's going to be able to validate it

25:42

but it is still a true and correct

25:46

certificate now the self-signed

25:47

certificates are usually the ones that

25:49

get installed in internal networks in

25:51

lab environments in demo environments

25:53

and pocs and those are the situations

25:55

where we get that warning in the browser

25:57

that says the certificate is not trusted

25:59

well it's not trusted because the

26:01

signature on that certificate is the

26:03

signature of somebody that we can cannot

26:06

validate its identity we don't know who

26:08

that is all right I can sign my own

26:10

certificates are you going to trust me

26:11

no because that's the point of all the

26:13

process right to trust my identity to

26:15

find another method of validating my

26:17

identity my signature means nothing you

26:20

need a CA for that also keep in mind

26:23

that in many cases the authentication

26:26

process for example gaining access to a

26:28

network can be performed at two

26:30

different levels we can validate the

26:32

identity of the user or the admin that

26:35

is trying to access the network and we

26:36

can also validate the identity of the

26:39

machine that the user or the admin is

26:41

trying to connect to the network so we

26:43

can have two levels in there

26:44

authenticate user and also the laptop

26:46

that is trying to gain access to the

26:47

network that's why they also have

26:49

machine certificates and user

26:51

certificates ever found yourself in a

26:53

situation where if you're using a

26:55

company laptop you can easily plug

26:57

anything red cable into it and gain

26:59

instant access to the local network

27:00

while if you bring your own laptop from

27:03

home you're not getting any kind of

27:04

access well that's because that laptop

27:07

in there has some sort of authentication

27:08

information built into it most likely a

27:11

certificate that it presents as a

27:13

machine certificate and authenticates

27:14

itself to the access control system that

27:17

allows access to the rest of your

27:19

network your home laptop doesn't have

27:21

that certificate doesn't have a valid

27:23

identity that it can present so it is

27:25

denied access

27:27

so a certificate is going to go through

27:29

a number of stages during its lifetime

27:30

starting with the creation of the keying

27:32

material that is the creation of the

27:34

private key and the public key right

27:35

we're using just a public key to grade a

27:37

certificate but we need a private key as

27:39

well because the public key is derived

27:41

from the private key not the other way

27:43

around you should know this by now

27:46

then we move on to the certificate

27:48

creation that is filling in that CSR

27:51

sending the CSR and receiving a valid

27:53

certificate from the ca certificate

27:55

storage is important not necessarily

27:57

from a security perspective but more

27:59

from a usability perspective you need to

28:01

store that certificate load it into a

28:03

certificate store where it can be

28:05

accessed by any applications that need

28:07

to use it to validate someone's identity

28:10

now on the other hand you should store

28:12

in a very secure manner the private key

28:14

that was used to generate that

28:16

certificate and finally we have

28:18

revocation of that certificate or

28:20

putting the certificate out of business

28:22

it might be because the certificate has

28:24

expired or it might be because the

28:27

private key has been compromised in any

28:29

situation a certificate can always be

28:31

renewed now if the private key has been

28:33

compromised you're probably gonna want

28:35

to use a new key and generate a new

28:37

public key pair for the new certificate

28:39

but if the certificate just happened to

28:41

expire because it reached its end of

28:44

life its expiration date you can will

28:46

reuse the same keying material you don't

28:48

need to generate a new key and keep in

28:50

mind that all certificates expire at

28:51

some point there is always going to be

28:52

an expiration date on certificates

28:55

now in general storing secure Keys is a

28:58

big problem in security because if you

29:00

back up the key just to say you're

29:02

you're storing it in multiple versions

29:04

just to make sure that you're not going

29:06

to lose it it exponentially increases

29:08

the risk of that Key's exposure on the

29:11

other hand if you don't have a backup

29:12

for the key then the place you're

29:13

actually storing that key becomes a

29:15

single point of failure which can cause

29:17

in case of failure your inability to

29:20

ever access your encrypted data so there

29:23

have been invented some processes for

29:25

dealing with this type of key recovery

29:28

in which we're trying to store the

29:30

private key somewhere but in a as secure

29:34

manner as possible for example we we

29:37

store its segmented into a different

29:40

number of storage devices or we need a

29:43

specific number like two or three admins

29:46

with access at the same time in order to

29:48

recover all the pieces and and build

29:50

that key back again then we're using all

29:53

these security measures to avoid any

29:56

kind of collusion or exploitation that

29:59

might happen against that key storage

30:01

system now key escrow is kind of similar

30:04

but it refers from a legal standpoint to

30:07

the practice of giving that key to some

30:09

third party for the purpose of safe

30:12

storage if you don't want to invest in

30:14

some Secure Storage infrastructure for

30:16

your keys you can pay a third-party

30:18

company to do that for you now of course

30:20

the liability that comes from a

30:23

potential keep compromise can be

30:25

transferred as a risk to that

30:27

third-party company but don't forget

30:29

that even if they are the ones now

30:31

responsible for the security of the key

30:33

any side effects that might occur from

30:36

that key being compromised are going to

30:38

hit back your own company and your own

30:40

reputation

30:41

and we talked about the fact that all

30:43

certificates expire at some point

30:45

normally these certificates that are

30:46

generated for end users have a shorter

30:48

lifespan maybe a couple of months maybe

30:50

even 30 days maybe even one year or so

30:52

but real certificates are usually

30:54

created for a longer period of time such

30:56

as one three five ten years or so now

31:00

generally when a certificate expires

31:01

there's a very simple procedure to just

31:03

renew it and in case of CAS or

31:06

registration authorities the process

31:08

itself if the user already has a valid

31:10

certificate if the user wants to just

31:12

renew it the process is going to be much

31:14

more smooth so not so many checks are

31:16

going to be performed if the user is

31:18

already holding a valid certificate

31:21

now certificate can also be revoked that

31:23

is manually and explicitly taken out of

31:26

commission so it's a process where we

31:28

suddenly decide that these certificates

31:30

are not going to be valid anymore maybe

31:31

the company went out of business the

31:33

company doesn't exist anymore maybe the

31:35

uh the private Keys has been compromised

31:37

maybe the servers that were storing them

31:38

are have been the victim of a data

31:40

breach and we don't know exactly how

31:42

much data was lost in there but we

31:43

decide to to revoke all those

31:45

certificates how can we do this well

31:47

there are two methods for doing this the

31:49

first one relies on the actual CA and

31:52

the ca can inform the end users what are

31:55

the revoked certificates that it manages

31:59

and that's called a certificate

32:01

revocation list crl now the way this

32:03

works is that when clients attempt to

32:06

validate a certificate with a CA well

32:07

they grab the public key of that CA they

32:09

decrypt the signature and so on so forth

32:11

but they also should check the serial

32:13

number of the ca to see whether it is

32:16

found in one of the crls that they can

32:18

download from the from the ca of course

32:21

this is up to the client if they perform

32:22

this additional check or not

32:24

which means that certain clients might

32:26

not perform this check at all and other

32:28

clients might perform this check maybe

32:30

once a day once a week or so when they

32:33

just download those crls and then they

32:35

don't update them until let's say a

32:37

number of days have passed it also might

32:40

happen that the cas don't update those

32:42

crls immediately for everybody else to

32:45

download so revoking a certificate might

32:48

not happen instantaneously we have

32:50

another method of providing the

32:51

certificate expiration revocation list

32:53

dynamically to our users and that is

32:55

based on the ocsp online certification

32:58

status protocol now this instead of

33:00

downloading an entire list of serial

33:01

numbers of expired certificates or

33:03

revoke certificates we're simply relying

33:06

on a type of request reply protocol

33:08

where we simply send a query about a

33:11

specific serial number and then we'll

33:12

receive a response based on that serial

33:14

number telling us whether the

33:16

certificate is still valid or not now of

33:19

course it depends on the server

33:20

implementation how they're performing

33:22

this type of query processing so some

33:24

servers might be acquiring the database

33:26

of certificates directly others might be

33:28

querying the crl list so in case the

33:31

serial list is a bit behind or up to

33:33

date then ocsp is also going to provide

33:35

a less than ideal or less than

33:39

up-to-date answer and since this entire

33:41

process of request reply request reply

33:43

puts a lot of stress on the actual CA

33:47

server we can actually delegate the web

33:49

server that we're trying to access to

33:51

respond on behalf of the ca with these

33:54

ocsp status responses how does this work

33:58

well the web server obtains from the ca

34:00

a timestamped response which then in

34:03

turn it can use to provide as an answer

34:06

to any request that might come into the

34:08

web server in order to validate its

34:09

certificates so it doesn't have to go

34:11

back and forth to the ca every single

34:13

time somebody validates that certificate

34:15

asks the ca once receives a signed

34:19

response and then shows everyone this is

34:21

the signed response from the ca stating

34:23

that my certificate is still valid trust

34:25

this one and this process is called

34:27

ocasb stapling

34:31

there's another problem here that we can

34:33

address and that is a problem of another

34:35

man in the middle type of attack because

34:38

theoretically at least when you're

34:39

accessing a site such as google.com

34:41

you're performing a certificate exchange

34:43

you're requesting the certificate from

34:44

Google in order to validate it now what

34:47

if somebody in the middle of that

34:49

conversation intercepts that certificate

34:51

and injects their own certificate

34:53

signed certificate trusted certificate

34:56

what are you going to do with that

34:58

certificate well you're going to accept

34:59

it and you're going to think that Google

35:02

certificate is the one that you just

35:04

received and then what you're going to

35:06

do well you're going to send your

35:07

authentication data you're going to send

35:09

your emails you're going to upload your

35:10

files

35:11

you're going to perform all your tasks

35:13

and you're going to encrypt those with

35:16

the public key that came

35:18

from within that bogus certificate that

35:20

was just injected and of course all that

35:22

information now can be safely inspected

35:25

and snooped by the attacker that

35:28

injected that certificate

35:29

so in order to avoid this situation we

35:31

have something called certificate

35:33

pinning or hbkp

35:35

which stands for HTTP public key pinning

35:40

which is just a method of embedding the

35:43

information in the original certificate

35:45

in the actual Google certificate

35:46

somewhere within the application code so

35:49

somewhere within the the web page code

35:52

of Gmail for example there's going to be

35:54

the contents of Google certificate now

35:56

the browser of course has to know to

35:58

look for this has to be configured to

36:00

understand hpkp so if it finds a set of

36:03

information that describes the

36:05

certificate within the application code

36:07

then it can compare it with the actual

36:08

certificate that it received now if the

36:11

certificate has been tampered with and

36:13

has been injected by a foreign attacker

36:16

then of course they're not going to

36:17

match so that's how the browser can

36:19

detect an attempt for a man-in-the-mill

36:21

attack and unfortunately it doesn't

36:24

always happen for a malicious purpose

36:27

this type of man in the middle

36:28

interception because in many companies

36:30

you have dedicated firewalls Next

36:32

Generation firewalls especially that

36:34

perform SSL decryption in order to

36:36

inspect the web traffic that the

36:38

employees are sending back and forth in

36:40

order to block them from accessing

36:42

unwanted websites in order to block them

36:45

from downloading malware from unwanted

36:48

destinations and so on but every pretty

36:50

much all the web traffic nowadays is

36:51

encrypted so you have to perform SSL

36:54

decryption on the traffic before you can

36:57

actually look at the traffic which means

36:58

that you'll have to replace the

37:00

certificate that the user is actually

37:02

expecting to come from Google with your

37:05

own self-signed certificate or some

37:06

internal company certificate which is

37:08

basically just the same example as

37:10

before it's performing a man in the

37:12

middle attack now if that website uses

37:15

hpkp or certificate pinning that man in

37:18

the middle approach is not going to work

37:20

anymore it doesn't matter if it's

37:21

performed in a legitimate manner or by

37:23

an attacker so that was one of the

37:26

reasons why at some point hpkp

37:28

implementation started to back off just

37:30

a bit because they were creating a lot

37:33

of issues with legitimate company

37:35

approved and an employee approved

37:38

traffic inspection that's happening all

37:40

over the the Enterprise world

37:43

okay so how do you store certificates

37:45

well at the end of the day don't forget

37:47

that a certificate is nothing more than

37:48

a simple file so we store it as a file

37:51

on the disk with a certain extension

37:52

perhaps to help you recognize them

37:54

easier now one of the first types is a

37:57

binary format with the Der extension

37:59

you're not going to find these very

38:01

often the one that you will find more

38:04

often are the pem extension files these

38:07

are certificates stored in ASCII format

38:09

which means that they're easily

38:11

selectable copy and pasteable you can

38:14

attach them to email you can even paste

38:16

them inside of an email if you wish and

38:18

you can paste them in a in a web

38:19

interface for an API access for example

38:22

so they're much easier to you know to

38:24

move from one place to another

38:26

and the screenshot right here on the

38:28

slide shows you the contents of a PM

38:31

format certificate now don't expect to

38:33

be able to read the contents by yourself

38:35

because it's a base64 encoding but

38:38

base64 is easily reversible in one of

38:40

the simplest thing coding methods out

38:42

there so you can immediately get to the

38:45

actual contents of the certificate and

38:47

you're also going to find certificates

38:48

using the extensions such as CRT or CER

38:51

which unfortunately don't happen to

38:54

agree on a specific format so they don't

38:56

tell you if it's binary or ASCII format

38:59

what's stored in there and we also have

39:01

some specific file extensions and file

39:03

types that can store more than one

39:05

certificate for example the pkcs trail

39:08

format allows us to bundle the private

39:12

key and the public key together in the

39:14

same certificate this is normally

39:16

atypical because a certificate is meant

39:19

to store only the public key right but

39:21

there are situations for example when

39:22

you need to move the private key along

39:25

with the public key from one machine to

39:27

another for example when you're

39:28

performing an upgrade you're replacing a

39:30

server your web server right and you

39:33

want to move the the certificate content

39:35

the cryptographic content from one

39:37

machine to the next you can export it as

39:39

a pfx or p12 format file and then import

39:42

it on the next machine

39:44

and it's also used for backup purposes

39:47

if you want to back up your private keys

39:49

and you want to store them somewhere

39:50

safe you can use the pfx format or p12

39:53

ideally you should also protect this

39:55

type of certificate format with a

39:57

password because it contains sensitive

39:59

information

40:01

and we also have the p7b format which

40:04

stores the entire certificate chain

40:06

sometimes a host that uses a certificate

40:09

or has to validate it doesn't have the

40:11

ability of dynamically downloading the

40:13

entire certificate chain in order to

40:14

validate the certificate it's CA this

40:17

the one the ca that signed that CA and

40:19

so on and so forth so it might help

40:22

especially for embedded devices small

40:23

devices to help them by providing the

40:26

entire certificate chain so that they

40:27

can use it to validate whatever

40:29

certificates have been generated by the

40:32

by the leaf CA in that chain

40:34

managing certificates depend on which

40:36

operating system you're using on Windows

40:39

all the certificate business is most

40:40

likely managed by active directory

40:43

and there are some command line tools

40:44

out there as well especially the search

40:46

util Windows utility that can help you

40:49

manually generate interact with or

40:51

validate digital certificates now in

40:54

Linux we very often use the open SSL

40:56

series of utilities

40:59

and you can use an open SSL for a number

41:01

of tasks for example you can even make

41:04

yourself ACA you can generate a

41:06

certificate signing request you can

41:08

generate an actual certificate you can

41:09

validate a certificate and so on and so

41:11

forth you get the ability to manage

41:13

everything related to certificates

41:16

on the example on the slide you can see

41:18

that we're generating an RSA type of

41:20

public-private key pair of 2048 bits

41:23

we're generating a certificate that is

41:26

going to have an expiration date of one

41:28

year and we are outputting it as a PM

41:31

format in the file called certificate.pm

41:35

now of course this is going to be a

41:36

self-signed certificate

41:38

also notice the information that is

41:40

required for you to provide before

41:42

actually generating this user

41:44

certificate

41:46

and for your reference here are some

41:48

basic open SSL commands that you can use

41:50

to generate and manage certificates by

41:52

default of course you can run these on a

41:54

Linux system but you can also get access

41:56

to openssl if you're running a Windows

41:59

subsystem for Linux on top of Windows 10

42:02

or 11. so starting with a generation of

42:04

an RSA key pair the first command is

42:06

going to generate the private key for

42:08

you while the second one as you can see

42:10

uses the private key as an input in

42:13

order to generate the public key

42:14

remember we talked about this we said

42:16

that the public key can be derived from

42:18

the private one but not the other way

42:20

around the length the 1496 at the end is

42:25

the length of the key and the AES 256

42:28

parameter in there indicates that we

42:30

intend to encrypt which is going to

42:33

require a passphrase from you as well

42:35

we're going to encrypt the private key

42:36

because that is truly sensitive

42:39

information moving forward you can also

42:41

use openssl to make yourself a CA and

42:44

start signing certificates for accepting

42:47

csrs certificate signing requests first

42:50

you need to generate the CSR on the

42:52

server for which you want to generate

42:54

the certificate for that's a command for

42:56

this one and then you assign the CSR on

42:59

your own CA

43:01

finally a couple of commands for viewing

43:03

and validating certificates generated by

43:06

you or generated by anyone else and

43:09

signed by any public CA out there right

43:13

so a lot of information here about

43:14

digital certificates I know it's not

43:16

light not easy to process but they're

43:19

everywhere nowadays we have to know

43:20

about them you have to know about them

43:21

for the exam as well so I really hope

43:23

you found this video informative and

43:25

useful if you want to discuss more leave

43:27

a comment and if you like this oh like

43:29

And subscribe and good luck on the exam

43:31

see you on the next video thank you and

43:33

bye bye

43:36

foreign

43:40

[Music]

Browse More Related Video

Certificates - CompTIA Security+ SY0-701 - 1.4

Public Key Infrastructure - CompTIA Security+ Sy0-701 - 1.4

Principle 4 Security

But how does bitcoin actually work?

How prime numbers protect your privacy #SoME2

Non-repudiation - CompTIA Security+ SY0-701 - 1.2

Rate This

★

★

★

★

★

5.0 / 5 (0 votes)

Related Tags

Digital CertificatesPublic KeyCryptographySecurity InfrastructureAsymmetric KeysIdentity ValidationEncryption MethodsCertificate AuthoritySSL/TLSCybersecurity