Speaker: Prof. Johannes Buchmann (Darmstadt University of Technology. GERMANY)
Digital signatures are a core technology for making the internet more secure. However, quantum computers will break all digital signature algorithms used in practice. In my talk I give an overview over he importance of digital signatures in practice, I briefly review the ability of quantum computers to break digital signature schemes and I discuss possible alternatives from a theoretical and experimental point of view: lattice and coding based signatures and the Merkle signature system.
He is a professor of Computer Science and Mathematics at the Technical University of Darmstadt. In 1985, he received the Feodor Lynen Fellowship of the Alexander von Humboldt Foundation. Furthermore, he has received the most prestigious award in science in Germany, the Leibniz Award of the German Science Foundation.
Speaker: Toshiaki TANAKA (KDDI Lab.)
PKI is authentication mechanism for binding certificate holders to public keys. Mobile Internet is widely penetrated into Japanese Market. Success of download services such as music and games are believed to open the gate for promising mobile commerce services. Under such environments, strong authentication function is required. For the purpose to enhance its security, PKI is key technology for the provision of strong entity and/or message authentication infrastructure. However, the mobile environment is different from the wired network. Therefore PKI dedicated to mobile environment should be taken into account. In this talk, current topics and open issues on mobile PKI are discussed. Furthermore, real and experimental mobile PKI services in Japan are also introduced.
Toshiaki Tanaka received the B. E. and M. E. degrees of Communication Engineering from Osaka University, Japan, in 1984 and 1986 respectively. He joined KDD (now KDDI) and has been engaged in research on network security, cryptographic protocol, mobile security, digital rights management, and intrusion detection techniques. He is currently the leader of Security Lab. He is also engaged in standardization activities as the leader of Authentication WG of Mobile Commerce Committee, Mobile IT Forum in Japan, and the chairman of Authentication and Privacy WG of Secure Trusted Network Forum in Japan.
Note: Mobile IT Forum in Japan
Authors: Junghee Kim, Seoklae Lee, Jaeil Lee (Korea Information Security Agency)
Speaker: Junghee Kim
Presentation file [PDF]: (Click here) [New]
Many countries including Korea have already implemented national PKI and discus-sions are actively done for how we could use PKI for the cross border transactions among countries. For using PKI in the cross border transactions, Certification Author-ity(CA) should consider certificate policy, technical problems for PKI interoperability, law and rule relating to electronic signature. Among the considerations, certificate policy that defined by each CA could be a basic element for establishing PKI trust relationship.
For building trust relationship between CAs, each CA should perform certificate pol-icy mapping. Certificate policy mapping is an activity for comparing certificate poli-cies and resolving the differences concerning on identification method of entity, cer-tificate and key management and other operational requirement for CA. If we could decide that the certificate policies of CAs provide an equivalent or similar level of trust, then we can have trust relationship with other CA for PKI interoperability.
CAs in each country have been governed their law and rule concerning on electronic signature and implemented their system using diverse technologies. They also defined certificate policies that have different levels of trust for administrating their operation. In this circumstance, it is very difficult for CA to compare and analyze certificate policies of other CAs for PKI Interoperability.
We define major evaluation factors through analyzing various type of certificate poli-cies for efficient certificate policy mapping. The factors could be a utility when CA evaluates certificate policies and could be a reference for developing the CA's certifi-cate policy.
In this talk, we would briefly describe function and general elements of certificate policy, various types of certificate policies. We also describe international efforts of researching on CA's certificate policy for PKI interoperability. And we introduce major evaluation factors for efficient certificate policy mapping.
I am a researcher of Korea Information Security Agency (KISA) since 1999. I joined a national Root CA project for establishing PKI policy of Root CA and PKI interoperability experiments between Asian countries, especially for dealing legislation and policies issues related to electronic signature. I have been performing Accredited CAs audit for assuring their secure operation. I am also engaged in activities as a member of Asia PKI Forum, especially for Interoperability Working Group. I received B.E and M.E from Chung-Ang University, Korea, in 1997 and 1999.
Speaker: Prof. Kwok-Yan Lam (Tsinghua University, PR China)
Presentatioin file [PDF]: (Click here) [New]
Security is well recognized as a most important issue in the adoption of e-commerce. Public key cryptography (or PKC), being able to provide confidentiality and non-repudiation, is widely accepted to be a key mechanism in secure e-commerce systems. As such, infrastructures that facilitate the management and deployment of public key cryptosystems (commonly known as public key infrastructure or PKI) have received much attention of the e-commerce community. Authorities and regulators have spent a lot of efforts standardizing PKI-related standards and enacting legislations for recognizing PKI in business transactions. Furthermore, numerous PKI initiatives in specific industry domains and even at national levels were launched in the past few years. Nevertheless, the adoption of PKI has been discouraging, and in fact a number of them have already been dismantled. Almost invariably, high deployment cost and low security awareness are usually blamed as the reasons. In 2002, the speaker was engaged by the Asia Pacific Economic Cooperation (APEC) to study the issues of PKI for securing cross-border e-commerce in the Asia Pacific region. To most people's surprise, the study revealed that cost is not always the major concern and security awareness is indeed very high among e-commerce players. Instead, the major hindrance identified by most PKI players, contrary to our general perception, include the deficiency of technical standards and the lack of suitable PKI-related legislation. In this talk, we shall review the findings of this study and discuss the recommendations that aims to address the issues identified as the obstacles to the application of PKI
Kwok-Yan Lam is a Professor at the School of Software, Tsinghua University, PR China since 2002. Prior to joining the Tsinghua University, Professor Lam has been a faculty member of the National University of Singapore and the University of London since 1990. His main research interests include systems security, authentication protocols, intrusion detection, tamper-resistant design and security architecture of mission-critical applications. Professor Lam was a visiting scientist at the Isaac Newton Institute of the Cambridge University and a visiting professor at the European Institute for Systems Security. He has been a chief security architect for numerous electronic banking and electronic government systems in Singapore and Hong Kong. In 1998, Professor Lam received the Singapore Foundation Award from the Japanese Chamber of Commerce and Industry in recognition of his R&D achievement in Information Security in Singapore. Professor Lam received his B.Sc. (First Class Honours) from the University of London in 1987 and his Ph.D. from the University of Cambridge in 1990.
Speaker: Chi-Sung Laih (Nat'l Cheng Kung Univ., Taiwan)
Certificate is the most significant fort of PKI, which is mainly based on 509 version three. The standard certificate, nevertheless, when applied on practical application shows the insufficiency. In this talk, three achievable application will be introduced: first, multiple public key certificate; second, group certificate; and third, visual certificate. Yet how to promote various certificates and put them into practice will be another predicament. Our experience of promoting those certificates in Taiwan is also discussed.
Chi-Sung Laih received his B.S., M.S. and Ph.D. degrees all in Electrical Engineering from National Cheng Kung University (NCKU) in 1984,1986 and 1990, respectively. Since 1986, he has been on the faculty of NCKU, Taiwan, and currently is a professor and the director of computer and network center. From 1997-2003, he was elected as the Chairman of Chinese Cryptology and Information Security Association (CCISA). He obtained the 1997-1998 and 1999-2000 Outstanding Research Award of the National Science Council of the Republic of China. He received 1999 Outstanding Talent Award in Information Science, Republic of China. He was the program chairman of Asiacrypt 2003. His research interests include Cryptology, Information Security, Error Control Codes and Communication Systems.