PrivaSphere - project:
Public Key Server
Institution: ZHW
Supervisor: Marc Rennhard, Ralf Hauser
Team: t.b.d.
Background:
Years ago, a PGP key-server has been built at MIT. For the
S/MIME i.e. x.509 world the landscape is rather fragmented. Some
CA's have a public key directory for their own clients, but no
overarching solution is available and the offered ones are
sometimes of limited implementation quality.
REFERENCE: 10 reasons why PKI fail http://www.schneier.com/paper-pki-ft.txt
http://www.schneier.com/crypto-gram-0112.html
see also https://www.certbox.org/de/search/
Goal/Challenges:
- Build a public key server for both S/MIME and PGP/GPG.
- Provide a simple interface for users to register themselves
- Offer a LDAP interface for end-users and peer directories
- In view of lack of endorsement of public key certificates
by government and other institutions as well as due to the lack
of pervasive revocation list functions, allow users to prove they
a still in possession of their private key by "encrypted challenges"
and add the result of such challenges (e.g. date of last successful
execution) as optional information to the directory.
General Requirements
-
use a version control system (recommendation: git, svn)
-
use an open source license(recommendation: Berkeley, Apache)
-
use a modern, platform independent implementation technology (e.g. Java) / Java Skills
-
use a modern quality assurance tool (justify if anything other than
BugZilla)
PrivaSphere Role
- be a tutor; as well as a design, architecture, and technology
discussion partner
- provide space for a project-"product" in our BugZilla for
quality assurance service and temporary SVN server space