impl-openca.htm

The Open–source PKI Book Version 2.4.6 Edition Copyright &copy 1999, 2000 by Symeon (Simos) Xenite

<HTML
><HEAD
><TITLE
>The OpenCA Project[TODO]</TITLE
><META
NAME="GENERATOR"
CONTENT="Modular DocBook HTML Stylesheet Version 1.55"><LINK
REL="HOME"
TITLE="The Open&#8211;source PKI Book"
HREF="ospki-book.htm"><LINK
REL="UP"
TITLE="Open-Source Implementations"
HREF="implementations.htm"><LINK
REL="PREVIOUS"
TITLE="Open-Source Implementations"
HREF="implementations.htm"><LINK
REL="NEXT"
TITLE="The Oscar Public Key Infrastructure Project"
HREF="impl-oscar.htm"></HEAD
><BODY
CLASS="SECT1"
BGCOLOR="#FFFFFF"
TEXT="#000000"
LINK="#0000FF"
VLINK="#840084"
ALINK="#0000FF"
><DIV
CLASS="NAVHEADER"
><TABLE
WIDTH="100%"
BORDER="0"
CELLPADDING="0"
CELLSPACING="0"
><TR
><TH
COLSPAN="3"
ALIGN="center"
>The Open&#8211;source PKI Book: A guide to PKIs and Open&#8211;source Implementations</TH
></TR
><TR
><TD
WIDTH="10%"
ALIGN="left"
VALIGN="bottom"
><A
HREF="implementations.htm"
>Prev</A
></TD
><TD
WIDTH="80%"
ALIGN="center"
VALIGN="bottom"
>Chapter 7. Open-Source Implementations</TD
><TD
WIDTH="10%"
ALIGN="right"
VALIGN="bottom"
><A
HREF="impl-oscar.htm"
>Next</A
></TD
></TR
></TABLE
><HR
ALIGN="LEFT"
WIDTH="100%"></DIV
><DIV
CLASS="SECT1"
><H1
CLASS="SECT1"
><A
NAME="IMPL-OPENCA"
>The OpenCA Project[TODO]</A
></H1
><P
>  OpenCA is a collaborative effort to create a public&#8211;key infrastructure.
  Programmatically, it resembles pyCA with the exception of using Perl instead 
  of Python for the CGI scripts. It uses OpenSSL for the underlying
  cryptograpgic infrastructure. OpenCA is distributed with an 
  Apache&#8211;style license.
  </P
><DIV
CLASS="SECT2"
><H2
CLASS="SECT2"
><A
NAME="OPENCA-DESCRIPTION-LAYOUT"
>OpenCA Layout</A
></H2
><P
>    We describe the CA structure as used currently in OpenCA.

    <DIV
CLASS="FIGURE"
><A
NAME="OPENCA-LAYOUT"
></A
><P
><B
>Figure 7-1. Current OpenCA Layout</B
></P
><P
><IMG
SRC="figures/OpenCA-diagram.gif"></P
></DIV
>
    </P
><P
>    The Certification Authority &#8211;&#8211; for security reasons and in accordance with the 
    current layout &#8211;&#8211; should not be networked. It manually 
    communicates with the Registration Authority, perhaps using removable media.
    </P
><P
>    The Registration Authority should not have direct access to the Internet
    but be accessed through the RA Operator.
    </P
><P
>    The RA Operator is the interface of OpenCA between users and
    the Internet.
    </P
></DIV
><DIV
CLASS="SECT2"
><H2
CLASS="SECT2"
><A
NAME="OPENCA-ABBREV"
>OpenCA Abbreviations</A
></H2
><P
>    Throughout the documentation we use the following terminology.
    <DIV
CLASS="TABLE"
><P
><B
>Table 7-1. OpenCA Abbreviations</B
></P
><TABLE
BORDER="1"
CLASS="CALSTABLE"
><THEAD
><TR
><TH
ALIGN="LEFT"
VALIGN="TOP"
>Term</TH
><TH
ALIGN="LEFT"
VALIGN="TOP"
>OpenCA Object Name</TH
></TR
></THEAD
><TBODY
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>Certification Authority</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
>CAServer</TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>Registration Authority</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
>RAServer</TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>RA Operator</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
>RAOperator</TD
></TR
></TBODY
></TABLE
></DIV
>  
    </P
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="100%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>    The reader should notice the difference between the CA as an 
    organisation or a company
    and the CA as CAServer. Currently, we do not differentiate explicitly
    and the user has to identify the correct meaning by the context.
    </P
></TD
></TR
></TABLE
></DIV
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="100%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>    In several parts of the documents we use the terms Certificate Signing Request and requests
    to describe the same thing. The latter term is common in programming
    contexts.
    </P
></TD
></TR
></TABLE
></DIV
></DIV
><DIV
CLASS="SECT2"
><H2
CLASS="SECT2"
><A
NAME="SOFTWARE-TYPE"
>Software packages</A
></H2
><P
>	
	This is the basic software used to implement OpenCA.
	Current (May, 2000) versions are depicted in the table following the list.
    <P
></P
><OL
TYPE="1"
><LI
><P
>	Compatible Operating system like <SPAN
CLASS="TRADEMARK"
>Linux
	</SPAN
>&reg;, 
	available from 
  	<A
HREF="http://www.linux.org"
TARGET="_top"
>http://www.linux.org</A
>
  	</P
></LI
><LI
><P
>	  OpenSSL, available from 
	  <A
HREF="http://www.openssl.org"
TARGET="_top"
>http://www.openssl.org</A
>
	</P
></LI
><LI
><P
>	  Apache WWW Server, available from		
	  <A
HREF="http://www.apache.org"
TARGET="_top"
>http://www.apache.org</A
>
	</P
></LI
><LI
><P
>	  mod&#8211;ssl Apache module, available from		
	  <A
HREF="http://www.modssl.org"
TARGET="_top"
>http://www.modssl.org</A
>
	</P
></LI
><LI
><P
>	  OpenLDAP, available from		
	  <A
HREF="http://www.openldap.org"
TARGET="_top"
>http://www.openldap.org</A
>
	</P
></LI
></OL
>
    </P
><P
>	
      We subsequently install the OpenCA software. At the time 
      of writing, the latest version is 0.2.0, available at
      <A
HREF="http://www.openca.org/download.shtml"
TARGET="_top"
> 
      http://www.openca.org/download.shtml</A
>
    </P
><DIV
CLASS="TABLE"
><P
><B
>Table 7-2. Current Versions of OpenCA prerequisite software</B
></P
><TABLE
BORDER="1"
CLASS="CALSTABLE"
><THEAD
><TR
><TH
ALIGN="LEFT"
VALIGN="TOP"
>Software</TH
><TH
ALIGN="LEFT"
VALIGN="TOP"
>Current version</TH
></TR
></THEAD
><TBODY
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
><SPAN
CLASS="TRADEMARK"
>RedHat</SPAN
>&reg;Linux</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>6.2</TT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>OpenSSL SSL/TLS software</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>0.9.5a</TT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>Apache WWW Server</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>1.3.12</TT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>modssl SSL/TLS Apache module</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>2.6.4</TT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>OpenLDAP LDAP software</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>1.2.10</TT
></TD
></TR
><TR
><TD
ALIGN="LEFT"
VALIGN="TOP"
>Perl interpreter</TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><TT
CLASS="LITERAL"
>5.6.0</TT
></TD
></TR
></TBODY
></TABLE
></DIV
></DIV
><DIV
CLASS="SECT2"
><H2
CLASS="SECT2"
><A
NAME="FUNCTIONALITYCA"
>Functionality of the CA Server <I
CLASS="EMPHASIS"
>(CAServer)</I
></A
></H2
><P
>	The functionality of the Certification Authority Server is:
    </P
><P
>	The source code describes the <SPAN
CLASS="ACRONYM"
>CA</SPAN
> 
	server as <I
CLASS="EMPHASIS"
>CAServer</I
>.
    </P
><P
>    The following sections and subsections are the options presented
    to the user by the WWW interface to administer the CA.
    This interface is the recommended method of administration.
    </P
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="100%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>    The content of this section is subject to change in the future.
    </P
></TD
></TR
></TABLE
></DIV
><DIV
CLASS="SECT3"
><H3
CLASS="SECT3"
><A
NAME="CA-INITALISATION"
>Initialisation / CA Management</A
></H3
><P
>	<P
></P
><UL
><LI
><P
>	    Generate new CA private key
	    </P
><P
>	    This procedure is described in <A
HREF="keygensign.htm#GENERATEKEY"
>the section called <I
>Generate the RSA key&#8211;pair for a user/server</I
> in Chapter 4</A
>.
	    Generating a new secret (private) key for a CA
	    and overwriting the old one is an important procedure, since
	    previously&#8211;issued certificates become invalid.
	    The user is warned that the current CA private key will be
	    overwritten. 
	    </P
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="90%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>	    In fact, with the current version of OpenCA, the previous
	    current key is not overwritten, as the software saves
	    the current key in a file with an extension of .old.
	    However, previous any previous keys are overwritten.
	    </P
></TD
></TR
></TABLE
></DIV
><P
>	    The user is prompted
	    with a dialog box for the CA secret key. This
	    <I
CLASS="EMPHASIS"
>CA secret key</I
> is in fact the 
	    <I
CLASS="EMPHASIS"
>pass&#8211;phrase</I
>
	    that protects the CA private key.
	    For example, if we use <SPAN
CLASS="ACRONYM"
>RSA</SPAN
> as the public
	    key algorithm, the key generation procedure generates
	    a set of very large numbers. A part of them constitute the 
	    private key. This information must not be
	    compromised. In order to make it more secure, we encrypt
	    this information with a block cipher like <SPAN
CLASS="ACRONYM"
>DES</SPAN
>,
	    <SPAN
CLASS="ACRONYM"
>Triple&#8211;DES</SPAN
> or <SPAN
CLASS="ACRONYM"
>IDEA</SPAN
>.
	    Subsequently, when there is a need to have the value of
	    the private key, the application asks us for the pass&#8211;phrase,
	    decrypts the encrypted private key, and uses it.
	    </P
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="90%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>	    Safe choices for an encryption algorithm are Triple&#8211;DES 
	    (<SPAN
CLASS="ACRONYM"
>3DES</SPAN
> or sometimes written 
	    <SPAN
CLASS="ACRONYM"
>DES3</SPAN
>) and <SPAN
CLASS="ACRONYM"
>IDEA</SPAN
>. 
	    <SPAN
CLASS="ACRONYM"
>DES</SPAN
> is not considered a safe choice,
	    unless key recovery is an issue. <TT
CLASS="LITERAL"
>:)</TT
>
	    Apart from the joke, the user should be aware that
	    using high&#8211;grade encryption does not mean that
	    the system is secure. All components of a system need to be secure
	    in order to have a secure system. In the case of OpenCA,
	    there are a lot of components.
	    </P
></TD
></TR
></TABLE
></DIV
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="90%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>	    It is common practice that once the private key is used by
	    the application, it should not be kept in the computer's 
	    memory any longer. When there is a need
	    for the private key, the application should ask for it. This is
	    more secure but requires human intervention when there is
	    a need for the private key. For example, when we need to restart
	    a server.
	    </P
></TD
></TR
></TABLE
></DIV
><P
>	    Next the user is asked for the size of the CA key
	    in bits. This is the size of N in RSA, the product of the
	    two large prime numbers. This affects the security 
	    of the Certification Authority.
	    </P
><P
>	    A choice of 512 bits is not considered
	    safe while one of 1024 bits is considered relatively safe.
	    2048 bits are considered to be a secure choice with current
	    (May, 2000) information about factorisation.
	    </P
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="90%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>	    Consider that when the key length rises, 
	    so does the time needed to generate and do operations
	    with the keys.
	    For instance, on a <SPAN
CLASS="TRADEMARK"
>Pentium</SPAN
>&reg;
	    Pro computer, generating a key of size 1024 bits requires 
	    approximately 3 seconds; 2048 bits requires around 13
	    seconds. The tests were carried out using the OpenSSL software
	    and running the <SPAN
CLASS="TRADEMARK"
>Linux</SPAN
>&reg; 
	    operating system.
	    Key generation takes place once in the lifetime of the key.
	    Other operations, like the signing and verification of 
	    digital signatures, take 
	    place more frequently and remain to be benchmarked.
	    </P
></TD
></TR
></TABLE
></DIV
><DIV
CLASS="NOTE"
><P
></P
><TABLE
CLASS="NOTE"
WIDTH="90%"
BORDER="0"
><TR
><TD
WIDTH="25"
ALIGN="CENTER"
VALIGN="TOP"
><IMG
SRC="stylesheet-images/note.gif"
HSPACE="5"
ALT="Note"></TD
><TD
ALIGN="LEFT"
VALIGN="TOP"
><P
>	    With <SPAN
CLASS="TRADEMARK"
>Pentium</SPAN
>&reg; II or better
	    computers, the size of 2048 bits is both a fast and secure choice.
	    Once we click OK, the key&#8211;generation takes place.
	    This takes several seconds.  The user should wait for it to
	    complete.
	    </P
></TD
></TR
></TABLE
></DIV
><P
>	    You can find a sample encrypted private key in PEM format at
	    <A
HREF="sample-openssl-usage.htm#SAMPLE-PRIV-ENC-KEY"
>the section called <I
>Sample Encrypted Private Key in PEM format (2048 bits)</I
> in Appendix B</A
>.
	    </P
></LI
><LI
><P
>Generate new CA Certificate Signing Request</P
><P
>	    This is the procedure described in <A
HREF="keygensign.htm#GENERATECSR"
>the section called <I
>Generate a certificate request</I
> in Chapter 4</A
>. 
	    Essentially, the certificate request is generated to be later 
	    self&#8211;signed with the public key of the CA, generated with 
	    the previous option.
	    </P
></LI
><LI
><P
>Export CA Certificate Request</P
><P
>This option exports the CA certificate request generated
	    above.  A file is created in the file system
	    that corresponds with the CSR.</P
></LI
><LI
><P
>Generate Self&#8211;Signed CA Certificate</P
><P
>This option uses the generated
	    CSR to create the CA Certificate. It signs it with
	    the public key of the CA.
	    </P
></LI
><LI
><P
>Export CA Certificate</P
><P
>This option exports the generated CA Certificate or