1 / 7

PKI in Chandler

Heikki Toivonen Open Source Applications Foundation. PKI in Chandler. What is OSAF?. Founded by Mitch Kapor (founder of Lotus Development Company etc.) to bring his vision about a better Personal Information Manager a reality Based in San Francisco, CA Currently has about 20 employees

lorand
Télécharger la présentation

PKI in Chandler

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Heikki Toivonen Open Source Applications Foundation PKI in Chandler

  2. What is OSAF? • Founded by Mitch Kapor (founder of Lotus Development Company etc.) to bring his vision about a better Personal Information Manager a reality • Based in San Francisco, CA • Currently has about 20 employees • Non-profit

  3. What is Chandler? • Personal Information Manager • Email, calendar, tasks, notes, instant messaging, ... • Open Source, cross platform, written in Python • P2P sharing plus more traditional models – all sharing encrypted • Canoga release next year targeted for small groups and individuals • Westwood release for higher ed. follows

  4. PKI in Chandler • Users establish sharing network by exchanging X.509 certificates • Either established CA created certs, or Chandler created certs • Users can verify certificate fingerprints out-of-band to mark them trusted for sharing, or implicitly trust all or all signed from certain CAs • All sharing encrypted and signed • Also SSL for IMAP ect.; S/MIME

  5. Implementation Details • OpenSSL • M2Crypto (Python wrapper for OpenSSL) • Extended M2Crypto to enable certificate creation etc. • EGADS with PyEGADS entropy service? • PyEGADS created at OSAF • Add M2Crypto to Twisted – work-in-progress • Application logic in Chandler itself

  6. References • Heikki Toivonen (heikki@osafoundation.org) • http://www.osafoundation.org • http://wiki.osafoundation.org/twiki/bin/view/Chandler/SecurityFramework

  7. Questions?

More Related