Teaching X.509/PKIX Based Digital Signatures While Enhancing Non-Repudiation of a Web Based Assessment System
نویسندگان
چکیده
We describe a web based assessment system whose non-repudiation security feature is based on digital signatures. The first objective of this proposal is to enhance the students’ understanding of the X.509/PKIX framework and digital signatures based on it. The second purpose is to develop a security enhanced web based assessment system, focusing on non-repudiation requirements. At the same time, this non-repudiation feature is used as a way for achieving the first objective. In this paper we describe the proposed system, the prototype we have already implemented as well as the results obtained in its evaluation by the students.
منابع مشابه
EVAWEB V2: Enhancing a Web-Based Assessment Systems Focused on Nonrepudiation Use and Teaching
Security is one of the main problems in web-based assessment systems, particularly guaranteeing non-repudiation of tests submissions. Authors have developed EVAWEB, a web-based assessment system that addresses this issue by using digital signatures. Moreover, the use of this technology in EVAWEB provides a real context to the students for learning digital signatures. In this paper, the enhancem...
متن کاملSome Critical Aspects of the PKIX TSP
Authentication, non-repudiation, and digital signatures, require the ability to determine if a data token existed at a certain moment in time when the creator’s credentials were valid. Time-stamps are tokens which contain a verifiable cryptographic link between a time value and a data representation. The paper presents some critical aspects of the X.509 Public Key Infrastructure Time Stamp Prot...
متن کاملAssessing PKI
34 Published by the ieee ComPuter soCiety ■ 1540-7993/09/$25.00 © 2009 ieee ■ ieee seCurity & PrivaCy A public-key infrastructure is a collection of hardware, software, processes, and people that together provide security services based on public-key cryptography. Many countries, including Norway, Sweden, Denmark, Finland, Estonia, Austria, Belgium, and Canada, have introduced large-scale secur...
متن کاملUniversity Authentication System Based on Java Card and Digital X.509 Certificate
This article presents a solution to the problem of strong authentication, portable and expandable using a combination of Java technology and storage of X.509 digital certificate in Java cards to access services offered by an institution, in this case, the technology of the University of Panama, ensuring the authenticity, confidentiality, integrity and non repudiation.
متن کاملSecure Books: Protecting the Distribution of Knowledge
We undertook a project to secure the distribution of medical information using Wax. This is a proprietary hypertext-based system used for information such as treatment protocols, drug formularies, and teaching material. An initial attempt, using digital signatures (in line with a recent European standard) and certificates conforming to X.509 has thrown up a number of interesting problems with c...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2004