Introduction of X.500
X.500 is a directory standard for how information about objects is retrieved, deleted, stored, managed, updated and also protected. X.500 has been created and has been developing for 23 years. The X.500 standard has an extensive specifications consisting of ten documents like for example, X.500, X.501, X.509, X.511, X.518, X.519, X.520, X.521, X.525 and also X.530. X.509 is widely known as the basis for digital signatures and also PKI (Public Key Infrastructure). X.500 standard is developed jointly between ITU-T and ISO/IEC. ISO/ IEC.
Security Features
Examples of the security features are strong authentication, access control and also digital signature.
o Strong authentication – it helps to build trust between the X.500 directory components, validates the identity of directory users for access control and also protect against replay and denial-of-service attacks.
o Access control – it has a standard that defines the security mechanisms to protect information in the directory and also restrict user access to it meaning the users are restrict from seeing it or even modifying the information.
o Digital signature – a message encrypted by the private key can be decrypted by anyone holding a copy of the public key. If decryption is possible, only the holder of the private key could have sent this message. This technique is used to create digital signatures. When a message is to be digitally signed, a hash of the message is created. The hash is encrypted using the private key and appended to the message as a digital signature. The receiver decrypts the signature using the public key. It then creates its own hash of the message. If the two hashes are identical, the receiver knows that the message has been transmitted unchanged and that the sender’s identity is known with a high level of certainty. This gives an end-to-end security also in a distributed environment.
Hai Nisha, the blog post has good and relevant content. Though the paragraphing can be made as it is a bit lengthy, clear sub-headings can be seen. With this blog post, I have learnt that the X.500 has an extensive specifications that consists of 10 documents like X.509, X.530, X.511, etc. I also learnt more about the security features which X.500 have like authentication, digital signature and access control. I have learnt more of the background of X.500 and that it was developed jointly between ITU-T and ISO/IEC. Though brief, more elaboration can be made on the authentication and access control.
ReplyDelete