Recent attacks against individuals and companies online have utilised known vulnerabilities in certificate management in order to spoof websites or gain trust to install malicious software without the user's knowledge. This 3 day workshop provides an opportunity for industry, research and academia communities, and government sectors, to have a broad overview of the use of encryption technology in Public Key Infrastructure and Transport Layer Security. This includes an analysis of the most prolific attacks against crypto systems.
This instructor-led event will combine lectures on the basics of encryption, the Encrypting File System currently used by Windows 7 and Windows 8, the creation of a PKI using a variety of software and looking at tools which can exploit flaws in the implementation of a PKI. The lectures will be complemented with extensive exercises using the software discussed.
The course is intended for anyone who wishes to develop an understanding of the concepts behind public key infrastructure, transport layer security and their application in real life.
- The prerequisites for this workshop are attendance of the QA Security Fundamentals course (www.qa.com/QASECFUND), or equivalent knowledge.
At the end of the workshop, delegate will have a good understanding of the fundamentals of cryptography and the concept of Public Key Infrastructure. Delegate will gain practical experience in Encryption File System, Web page encryption, Certificate Authority creation and configuration, and Certificate revocation. The practical exercises are used to consolidate the theory discussed throughout the workshop.
Module 1: Basics of Cryptography
This module introduces the fundamentals concepts of cryptography. The following point will be covered in this first module:
- CIA Triad
- History of cryptography
- Real world application of cryptography
- Block and Stream Ciphers
- Symmetric encryption
- Symmetric encryption algorithms
- Asymmetric encryption
- Cryptographic Signatures
- hashing Algorithms
- Windows password analysis
Module 2: Introduction to Public Key Infrastructure (PKI)
Building from the understanding of cryptographic fundamental concepts, the Public Key Infrastructure will be introduced. The following points will be covered:
- Definition and PKI components
- X.509 certificates
- Certificate Signatures
- Public Key Cryptography Standards (PKCS)
Module 3: Disc Encryption
A practical use of encryption will be explored. Key management concepts will also be introduced.
- Disc Encryption technologies
- Encrypting File System
- Trusted Platform Modules
- Attacking Disc Encryption
- Investigating the Encryption File System: Encrypting and decrypting files with bitlocker
Module 4: Installing Certificate Authority Hierarchy
In this module, Certificate of Authority will be further explored. The following points will be covered:
- Certificate of Authority (CA)
- Types of Certification Authority
- CA Hierarchy Design Guidelines
- Root Certificate Authority
- Analysis of problems with CA
- Certification revocation
- Installing an Offline Root Certification Authority
- Installing and Issuing Certificate Authority
- Administering certificate templates
- installing an online responder
Module 5: Transport Layer Security (TLS)
Securing website from unsolicited monitoring is essential to ensure the confidentiality of data that transit through the web. TLS will be explored in great details in this module and the following points will be covered:
- Securing Web sites
- TLS traffic analysis (Wireshark)
- Creating a TLS-enabled Web Site
- Analysing TLS Traffic
- Revoking a certificate