SlideShare uma empresa Scribd logo
1 de 19
Baixar para ler offline
The Cacert Project
- An Invitation to CAcert ATE Tokyo -



                       Taisuke Yamada
                       @tyamadajp
Agenda

1. What is Cacert?
2. What can it do for you
3. Current status
4. How does it work
5. Invitation to ATE Tokyo
   (at OSC2011, on Mar 5, 2011)
So, what is it?



  It's a “community”-based
      Certificate Authority
So, what is it?




  What? → OK, I'll explain...
Certificated-based “trust” basics




                                   Websites
                                        Email
                          Application
    How do you know that what you are
     accessing is what it claims to be?
Solution: “Chain of trust”
For you, everything is built on
These 2 links you trust!

                                              Root CA

                        User
              Web                                 Intermediate CA
                    Email                  User

                            App
User                        Distribution
So, what about CAcert?
Usual CA            CAcert

  The G-O-D(tm)          Automated
    Root CA                Issuer



                    Web-of-Trust


“All you need is     “Trust each other,
 to BELIEVE (me)”     and I'll bless you”
In another word,



   Now, the G-O-D is gone,
   replaced by the Web-of-
   Trust.
What can CAcert do for me?
   0pt Issues minimal server / client /
       S/MIME cert. Valid for 6 months.
  50pt Issues fully descriptive cert, backed
       by higher class cert. Valid for 2 years.
 100pt All of the above + code-signing cert.
       You can also give out points if you
       pass the Assurer Challenge test.
 By being “assured”, you'll obtain points for
 creating higher-level certificate.
But WAIT!



   Isn't that a “Ore-Ore”?
But WAIT!


     Isn't that a “Ore-Ore”?
  Named after “Ore-Ore“ fraud scheme, which calls up
  elderly (like 80+ old) and tells “Granma, it's me! (Ore!)
  I had a accident with Yakuza, and need to pay them!
  Please! Let me borrow $5000! My bank account is...”.
  Who got a call will panic, and sends without thinking.

  So “Ore-Ore” cert is a cert that claims its public
  authority without backing of any other public CA.
Going for a “True” Root CA
●   Already in many Linux/*BSD distros
●   Current target: Mozilla
●   Windows and OSX: TBD

       There're “cheap” commercial CAs.
       But, CAcert's goals are:
       ・ To build world-acknowledged CA
         based on community effort
       ・ Provide *everyone* a secure env.

       It's also useful to make cert managemnet easier!
Going for a “True” Root CA
●   Already in many Linux/*BSD distros
●   Current target: Mozilla
●   Windows and OSX: TBD




    In short, audit by independent third party is required.
    And in 2010, CAcert has prepared all the legal docs
    and (strict) policy for an audit! (some still under draft).
How does it work, and what do I do?
  For Users
 1. Register at CAcert.org
 2. Print CAP form, and bring it with you,
    along with government-issued ID.
 3. Fill out, sign, and give the CAP form
    in front of an assurer, face-to-face
  You can start issuing certs right after registration.
  It's just more points are needed to create higher-level
  ones.
How does it work, and what do I do?
 For Assurer
1. Try best to check validity of user-
   provided ID (ex. UV-light checks)
2. Understand, and explain member's
   obligation (ref: Community Agreement)
3. Don't just give out full points. Give
   points based on your “confidence”.
        Think: What if some Martian comes up and
               provides you an ID of “Galactic Empire”?
Topics in Japan



 We are having the first
 official CAcert event in Japan!
ATE Tokyo (Assurer Training Event)
1. One of the requirements to become a
   “Senior Assurer”.
2. A chance to assurer people to become a
   “Experienced Assurer”
3. A chance to obtain 100+pt.
 Peter Yuill of CAcert.org, who is happening
 to be in Japan during OSC2011 period, has
 offered to be a “trainer” of the event!
 If you miss this, “next time” might not come in few years!
NOTE: Assurer “Experience Point”
  0EP Can give up to 10pt/assurance.
        Each assurance provides 2EP back
        to an assurer.
    ...
 50EP Can give up to 35pt. Who reaches
        this level is called “Exp. Assurer”

 Senior Assurer is a “Exp. Assurer”++,
 who is regarded to be capable of handling
 deeper CAcert activities.
Announcement
Date :2011/3/5
Place: Waseda Univ.             Shinjuku
                              Sports Center
       West Campus(63&61)
   + city's meetup space
Sessions:
- Training (ATE) in OSC
- Assurance (signing) in OSC           Dept of
                                     Sci. And Eng.
  and right after OSC closing

 Please go and register to
 http://www.ospn.jp/osc2011-spring/ !

Mais conteúdo relacionado

Semelhante a The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)

OxCEPT Introduction
OxCEPT IntroductionOxCEPT Introduction
OxCEPT IntroductionMattSims
 
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie SmitsBrussels Legal Hackers
 
Build and Operate Your Own Certificate Management Center of Mediocrity
Build and Operate Your Own Certificate Management Center of MediocrityBuild and Operate Your Own Certificate Management Center of Mediocrity
Build and Operate Your Own Certificate Management Center of MediocrityT.Rob Wyatt
 
[Cluj] Turn SSL ON
[Cluj] Turn SSL ON[Cluj] Turn SSL ON
[Cluj] Turn SSL ONOWASP EEE
 
Patterns to Bring Enterprise and Social Identity to the Cloud
Patterns to Bring Enterprise and Social Identity to the Cloud Patterns to Bring Enterprise and Social Identity to the Cloud
Patterns to Bring Enterprise and Social Identity to the Cloud CA API Management
 
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...André Goliath
 
Client Cert Deployment Models and Hardware Tokens/Smart Cards
Client Cert Deployment Models and Hardware Tokens/Smart CardsClient Cert Deployment Models and Hardware Tokens/Smart Cards
Client Cert Deployment Models and Hardware Tokens/Smart CardsEd Dodds
 
Statement Of Purpose For Software Skills
Statement Of Purpose For Software SkillsStatement Of Purpose For Software Skills
Statement Of Purpose For Software SkillsKrystal Ellison
 
What is Certificate Transparency (CT)? How does it work?
What is Certificate Transparency (CT)? How does it work?What is Certificate Transparency (CT)? How does it work?
What is Certificate Transparency (CT)? How does it work?CheapSSLsecurity
 
Agile code quality metrics
Agile code quality metricsAgile code quality metrics
Agile code quality metricsGil Nahmias
 
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshop
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshopBlockchain, Bitcoin, Crypto assets, Initial Coin Offer workshop
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshopNext Space Pvt. Ltd
 
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...apidays
 
CIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCloudIDSummit
 
CIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCloudIDSummit
 
Kerberos-PKI-Federated identity
Kerberos-PKI-Federated identityKerberos-PKI-Federated identity
Kerberos-PKI-Federated identityWAFAA AL SALMAN
 
Ethical Hacking Is A Game Of Technology
Ethical Hacking Is A Game Of TechnologyEthical Hacking Is A Game Of Technology
Ethical Hacking Is A Game Of TechnologyJennifer York
 

Semelhante a The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN) (20)

OxCEPT Introduction
OxCEPT IntroductionOxCEPT Introduction
OxCEPT Introduction
 
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
20190316 - CLBFest - Blockchain is WTF - Gerrie Smits
 
Build and Operate Your Own Certificate Management Center of Mediocrity
Build and Operate Your Own Certificate Management Center of MediocrityBuild and Operate Your Own Certificate Management Center of Mediocrity
Build and Operate Your Own Certificate Management Center of Mediocrity
 
[Cluj] Turn SSL ON
[Cluj] Turn SSL ON[Cluj] Turn SSL ON
[Cluj] Turn SSL ON
 
Patterns to Bring Enterprise and Social Identity to the Cloud
Patterns to Bring Enterprise and Social Identity to the Cloud Patterns to Bring Enterprise and Social Identity to the Cloud
Patterns to Bring Enterprise and Social Identity to the Cloud
 
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...
Von JavaEE auf Microservice in 6 Monaten - The Good, the Bad, and the wtfs...
 
Client Cert Deployment Models and Hardware Tokens/Smart Cards
Client Cert Deployment Models and Hardware Tokens/Smart CardsClient Cert Deployment Models and Hardware Tokens/Smart Cards
Client Cert Deployment Models and Hardware Tokens/Smart Cards
 
Statement Of Purpose For Software Skills
Statement Of Purpose For Software SkillsStatement Of Purpose For Software Skills
Statement Of Purpose For Software Skills
 
Describe how corda works
Describe how corda works Describe how corda works
Describe how corda works
 
What is Certificate Transparency (CT)? How does it work?
What is Certificate Transparency (CT)? How does it work?What is Certificate Transparency (CT)? How does it work?
What is Certificate Transparency (CT)? How does it work?
 
Agile code quality metrics
Agile code quality metricsAgile code quality metrics
Agile code quality metrics
 
What Is EDI: Whitepaper Download
What Is EDI: Whitepaper DownloadWhat Is EDI: Whitepaper Download
What Is EDI: Whitepaper Download
 
Sect f41
Sect f41Sect f41
Sect f41
 
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshop
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshopBlockchain, Bitcoin, Crypto assets, Initial Coin Offer workshop
Blockchain, Bitcoin, Crypto assets, Initial Coin Offer workshop
 
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...
apidays LIVE Australia 2021 - API Horror Stories from an Unnamed Coworking Co...
 
CIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You Eat
 
CIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You EatCIS14: Authentication: Who are You? You are What You Eat
CIS14: Authentication: Who are You? You are What You Eat
 
Kerberos-PKI-Federated identity
Kerberos-PKI-Federated identityKerberos-PKI-Federated identity
Kerberos-PKI-Federated identity
 
Ethical Hacking Is A Game Of Technology
Ethical Hacking Is A Game Of TechnologyEthical Hacking Is A Game Of Technology
Ethical Hacking Is A Game Of Technology
 
Orion Controls Case Essay
Orion Controls Case EssayOrion Controls Case Essay
Orion Controls Case Essay
 

Mais de Taisuke Yamada

ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴Taisuke Yamada
 
DIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesDIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesTaisuke Yamada
 
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -Taisuke Yamada
 
Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Taisuke Yamada
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourTaisuke Yamada
 
Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Taisuke Yamada
 
Getting Started with SDR in Python
Getting Started with SDR in PythonGetting Started with SDR in Python
Getting Started with SDR in PythonTaisuke Yamada
 
VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!Taisuke Yamada
 
Hacking Ruby with Python
Hacking Ruby with PythonHacking Ruby with Python
Hacking Ruby with PythonTaisuke Yamada
 
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdmod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdTaisuke Yamada
 
Introduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutIntroduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutTaisuke Yamada
 
Hadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateHadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateTaisuke Yamada
 
201012 cacert-at-tokyodebian
201012 cacert-at-tokyodebian201012 cacert-at-tokyodebian
201012 cacert-at-tokyodebianTaisuke Yamada
 
Nilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianNilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianTaisuke Yamada
 
Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Taisuke Yamada
 
The Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTThe Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTTaisuke Yamada
 
WebDAV, ATOM, and REST
WebDAV, ATOM, and RESTWebDAV, ATOM, and REST
WebDAV, ATOM, and RESTTaisuke Yamada
 

Mais de Taisuke Yamada (18)

ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴ウェブパフォーマンス計測の落とし穴
ウェブパフォーマンス計測の落とし穴
 
DIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 MinutesDIY Akamai Globe in 50 Minutes
DIY Akamai Globe in 50 Minutes
 
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
ウェブサイト最適化101 - 正しく測ろうあなたのサイト -
 
Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)Quick QUIC Technical Update (2017)
Quick QUIC Technical Update (2017)
 
IoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an HourIoT Deep Dive - Be an IoT Developer for an Hour
IoT Deep Dive - Be an IoT Developer for an Hour
 
Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線Pythonではじめるソフトウェア無線
Pythonではじめるソフトウェア無線
 
Getting Started with SDR in Python
Getting Started with SDR in PythonGetting Started with SDR in Python
Getting Started with SDR in Python
 
VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!VSCode Remoteでも画像コピペがしたいです!
VSCode Remoteでも画像コピペがしたいです!
 
InfiniBand on Debian
InfiniBand on DebianInfiniBand on Debian
InfiniBand on Debian
 
Hacking Ruby with Python
Hacking Ruby with PythonHacking Ruby with Python
Hacking Ruby with Python
 
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpdmod_auth_ticket - Bringing Single-Sign-On to lighttpd
mod_auth_ticket - Bringing Single-Sign-On to lighttpd
 
Introduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and DracutIntroduction to Initramfs - Initramfs-tools and Dracut
Introduction to Initramfs - Initramfs-tools and Dracut
 
Hadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-updateHadoop book-2nd-ch3-update
Hadoop book-2nd-ch3-update
 
201012 cacert-at-tokyodebian
201012 cacert-at-tokyodebian201012 cacert-at-tokyodebian
201012 cacert-at-tokyodebian
 
Nilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebianNilfs usage-report-and-comparison-at-tokyodebian
Nilfs usage-report-and-comparison-at-tokyodebian
 
Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -Embed Shogiboard - my first mediawiki extension -
Embed Shogiboard - my first mediawiki extension -
 
The Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LTThe Web That Wasn't - WikiBana #10 LT
The Web That Wasn't - WikiBana #10 LT
 
WebDAV, ATOM, and REST
WebDAV, ATOM, and RESTWebDAV, ATOM, and REST
WebDAV, ATOM, and REST
 

Último

Machine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfMachine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfAijun Zhang
 
UiPath Community: AI for UiPath Automation Developers
UiPath Community: AI for UiPath Automation DevelopersUiPath Community: AI for UiPath Automation Developers
UiPath Community: AI for UiPath Automation DevelopersUiPathCommunity
 
Empowering Africa's Next Generation: The AI Leadership Blueprint
Empowering Africa's Next Generation: The AI Leadership BlueprintEmpowering Africa's Next Generation: The AI Leadership Blueprint
Empowering Africa's Next Generation: The AI Leadership BlueprintMahmoud Rabie
 
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDEADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDELiveplex
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Commit University
 
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfUiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfDianaGray10
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6DianaGray10
 
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online CollaborationCOMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online Collaborationbruanjhuli
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostMatt Ray
 
Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024D Cloud Solutions
 
Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxMatsuo Lab
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioChristian Posta
 
Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.YounusS2
 
VoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXVoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXTarek Kalaji
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8DianaGray10
 
Computer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsComputer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsSeth Reyes
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding TeamAdam Moalla
 

Último (20)

Machine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdfMachine Learning Model Validation (Aijun Zhang 2024).pdf
Machine Learning Model Validation (Aijun Zhang 2024).pdf
 
UiPath Community: AI for UiPath Automation Developers
UiPath Community: AI for UiPath Automation DevelopersUiPath Community: AI for UiPath Automation Developers
UiPath Community: AI for UiPath Automation Developers
 
Empowering Africa's Next Generation: The AI Leadership Blueprint
Empowering Africa's Next Generation: The AI Leadership BlueprintEmpowering Africa's Next Generation: The AI Leadership Blueprint
Empowering Africa's Next Generation: The AI Leadership Blueprint
 
201610817 - edge part1
201610817 - edge part1201610817 - edge part1
201610817 - edge part1
 
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDEADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
ADOPTING WEB 3 FOR YOUR BUSINESS: A STEP-BY-STEP GUIDE
 
Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)Crea il tuo assistente AI con lo Stregatto (open source python framework)
Crea il tuo assistente AI con lo Stregatto (open source python framework)
 
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdfUiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
UiPath Solutions Management Preview - Northern CA Chapter - March 22.pdf
 
20230104 - machine vision
20230104 - machine vision20230104 - machine vision
20230104 - machine vision
 
UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6UiPath Studio Web workshop series - Day 6
UiPath Studio Web workshop series - Day 6
 
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online CollaborationCOMPUTER 10: Lesson 7 - File Storage and Online Collaboration
COMPUTER 10: Lesson 7 - File Storage and Online Collaboration
 
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCostKubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
KubeConEU24-Monitoring Kubernetes and Cloud Spend with OpenCost
 
20150722 - AGV
20150722 - AGV20150722 - AGV
20150722 - AGV
 
Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024Artificial Intelligence & SEO Trends for 2024
Artificial Intelligence & SEO Trends for 2024
 
Introduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptxIntroduction to Matsuo Laboratory (ENG).pptx
Introduction to Matsuo Laboratory (ENG).pptx
 
Comparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and IstioComparing Sidecar-less Service Mesh from Cilium and Istio
Comparing Sidecar-less Service Mesh from Cilium and Istio
 
Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.Basic Building Blocks of Internet of Things.
Basic Building Blocks of Internet of Things.
 
VoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBXVoIP Service and Marketing using Odoo and Asterisk PBX
VoIP Service and Marketing using Odoo and Asterisk PBX
 
UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8UiPath Studio Web workshop series - Day 8
UiPath Studio Web workshop series - Day 8
 
Computer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and HazardsComputer 10: Lesson 10 - Online Crimes and Hazards
Computer 10: Lesson 10 - Online Crimes and Hazards
 
9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team9 Steps For Building Winning Founding Team
9 Steps For Building Winning Founding Team
 

The CAcert Project - An Invitation to CAcert ATE in OSC/Tokyo 2011 (EN)

  • 1. The Cacert Project - An Invitation to CAcert ATE Tokyo - Taisuke Yamada @tyamadajp
  • 2. Agenda 1. What is Cacert? 2. What can it do for you 3. Current status 4. How does it work 5. Invitation to ATE Tokyo (at OSC2011, on Mar 5, 2011)
  • 3. So, what is it? It's a “community”-based Certificate Authority
  • 4. So, what is it? What? → OK, I'll explain...
  • 5. Certificated-based “trust” basics Websites Email Application How do you know that what you are accessing is what it claims to be?
  • 6. Solution: “Chain of trust” For you, everything is built on These 2 links you trust! Root CA User Web Intermediate CA Email User App User Distribution
  • 7. So, what about CAcert? Usual CA CAcert The G-O-D(tm) Automated Root CA Issuer Web-of-Trust “All you need is “Trust each other, to BELIEVE (me)” and I'll bless you”
  • 8. In another word, Now, the G-O-D is gone, replaced by the Web-of- Trust.
  • 9. What can CAcert do for me? 0pt Issues minimal server / client / S/MIME cert. Valid for 6 months. 50pt Issues fully descriptive cert, backed by higher class cert. Valid for 2 years. 100pt All of the above + code-signing cert. You can also give out points if you pass the Assurer Challenge test. By being “assured”, you'll obtain points for creating higher-level certificate.
  • 10. But WAIT! Isn't that a “Ore-Ore”?
  • 11. But WAIT! Isn't that a “Ore-Ore”? Named after “Ore-Ore“ fraud scheme, which calls up elderly (like 80+ old) and tells “Granma, it's me! (Ore!) I had a accident with Yakuza, and need to pay them! Please! Let me borrow $5000! My bank account is...”. Who got a call will panic, and sends without thinking. So “Ore-Ore” cert is a cert that claims its public authority without backing of any other public CA.
  • 12. Going for a “True” Root CA ● Already in many Linux/*BSD distros ● Current target: Mozilla ● Windows and OSX: TBD There're “cheap” commercial CAs. But, CAcert's goals are: ・ To build world-acknowledged CA based on community effort ・ Provide *everyone* a secure env. It's also useful to make cert managemnet easier!
  • 13. Going for a “True” Root CA ● Already in many Linux/*BSD distros ● Current target: Mozilla ● Windows and OSX: TBD In short, audit by independent third party is required. And in 2010, CAcert has prepared all the legal docs and (strict) policy for an audit! (some still under draft).
  • 14. How does it work, and what do I do? For Users 1. Register at CAcert.org 2. Print CAP form, and bring it with you, along with government-issued ID. 3. Fill out, sign, and give the CAP form in front of an assurer, face-to-face You can start issuing certs right after registration. It's just more points are needed to create higher-level ones.
  • 15. How does it work, and what do I do? For Assurer 1. Try best to check validity of user- provided ID (ex. UV-light checks) 2. Understand, and explain member's obligation (ref: Community Agreement) 3. Don't just give out full points. Give points based on your “confidence”. Think: What if some Martian comes up and provides you an ID of “Galactic Empire”?
  • 16. Topics in Japan We are having the first official CAcert event in Japan!
  • 17. ATE Tokyo (Assurer Training Event) 1. One of the requirements to become a “Senior Assurer”. 2. A chance to assurer people to become a “Experienced Assurer” 3. A chance to obtain 100+pt. Peter Yuill of CAcert.org, who is happening to be in Japan during OSC2011 period, has offered to be a “trainer” of the event! If you miss this, “next time” might not come in few years!
  • 18. NOTE: Assurer “Experience Point” 0EP Can give up to 10pt/assurance. Each assurance provides 2EP back to an assurer. ... 50EP Can give up to 35pt. Who reaches this level is called “Exp. Assurer” Senior Assurer is a “Exp. Assurer”++, who is regarded to be capable of handling deeper CAcert activities.
  • 19. Announcement Date :2011/3/5 Place: Waseda Univ. Shinjuku Sports Center West Campus(63&61)    + city's meetup space Sessions: - Training (ATE) in OSC - Assurance (signing) in OSC Dept of Sci. And Eng. and right after OSC closing Please go and register to http://www.ospn.jp/osc2011-spring/ !