Commit fc8138b4 authored by Niklaus Hofer's avatar Niklaus Hofer

almost ready

parent 0ff12ee7
......@@ -89,7 +89,7 @@
{
\setbeamertemplate{background}
{
\includegraphics[width=\paperwidth,height=\paperheight]{figures/1}
\includegraphics[width=\paperwidth,height=\paperheight]{figures/lego_punk_background}
\tikz[overlay] \fill[fill opacity=0.75,fill=white] (0,0) rectangle (-\paperwidth,\paperheight);
}
}
......
\section{Tools}
\subsection{pgpgdump}
\begin{frame}[c]{pgpdump introduction}
\begin{itemize}
\item Besser formatiert
\item Beannte Algorithmen
\item Trotzdem unübersichtlich
\item Zeigt auch signature packets
\end{itemize}
\end{frame}
\begin{frame}[fragile]{pgpdump Output}
\begin{onlyenv}<1>
\begin{lstlisting}[style=base]
gpg \
--export \
--armor \
--export-options export-minimal \
F1CC6A0D12BDDDEA4C462B0D93D3F6873020F6EB \
| pgpdump
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<2>
\begin{lstlisting}[style=base]
Old: Public Key Packet(tag 6)(525 bytes)
Ver 4 - new
Public key creation time - Tue May 8 19:48:27 CEST 2018
Pub alg - ōRSAō Encrypt or Signō(pub 1)ō
RSA n(4096 bits) - ...
RSA e(17 bits) - ...
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<3>
\begin{lstlisting}[style=base]
Old: User ID Packet(tag 13)(21 bytes)
User ID - vimja <demo@honet.ch>
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<4>
\begin{lstlisting}[style=base]
Old: Signature Packet(tag 2)(591 bytes)
Ver 4 - new
Sig type - Positive certification of a User ID and Public Key packet(0x13).
Pub alg - ōRSAō Encrypt or Signō(pub 1)ō
Hash alg - ōSHA512(hash 10)ō
Hashed Sub: unknown(sub 33)(21 bytes)
Hashed Sub: signature creation time(sub 2)(4 bytes)
Time - Tue May 8 19:59:14 CEST 2018
Hashed Sub: key flags(sub 27)(1 bytes)
Flag - This key may be used to certify other keys
Hashed Sub: key expiration time(sub 9)(4 bytes)
Time - Sun Jul 1 12:00:00 CEST 2018
Hashed Sub: preferred symmetric algorithms(sub 11)(2 bytes)
Sym alg - AES with 128-bit key(sym 7)
Sym alg - Triple-DES(sym 2)
[...]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<5>
\begin{lstlisting}[style=base]
Old: Signature Packet(tag 2)(591 bytes)
Ver 4 - new
Sig type - Positive certification of a User ID and Public Key packet(0x13).
Pub alg - RSA Encrypt or Sign(pub 1)
Hash alg - SHA512(hash 10)
Hashed Sub: unknown(sub 33)(21 bytes)
Hashed Sub: signature creation time(sub 2)(4 bytes)
Time - Tue May 8 19:59:14 CEST 2018
Hashed Sub: key flags(sub 27)(1 bytes)
Flag - This key may be used to certify other keys
Hashed Sub: key expiration time(sub 9)(4 bytes)
Time - Sun Jul 1 12:00:00 CEST 2018
Hashed Sub: ōpreferred symmetric algorithmsō(sub 11)(2 bytes)
Sym alg - ōAES with 128-bit key(sym 7)ō
Sym alg - ōTriple-DES(sym 2)ō
[...]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<6>
\begin{lstlisting}[style=base]
[...]
Hashed Sub: ōpreferred hash algorithmsō(sub 21)(2 bytes)
Hash alg - ōSHA1(hash 2)ō
Hash alg - ōRIPEMD160(hash 3)ō
Hashed Sub: preferred compression algorithms(sub 22)(3 bytes)
Comp alg - ZLIB <RFC1950>(comp 2)
Comp alg - BZip2(comp 3)
Comp alg - Uncompressed(comp 0)
Hashed Sub: features(sub 30)(1 bytes)
Flag - Modification detection (packets 18 and 19)
Hashed Sub: key server preferences(sub 23)(1 bytes)
Flag - No-modify
Sub: issuer key ID(sub 16)(8 bytes)
Key ID - 0x93D3F6873020F6EB
Hash left 2 bytes - c7 9d
RSA m^d mod n(4095 bits) - ...
-> PKCS-1
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<7>
\begin{lstlisting}[style=base]
[...]
Hashed Sub: preferred hash algorithms(sub 21)(2 bytes)
Hash alg - SHA1(hash 2)
Hash alg - RIPEMD160(hash 3)
Hashed Sub: ōpreferred compression algorithmsō(sub 22)(3 bytes)
Comp alg - ōZLIB <RFC1950>(comp 2)ō
Comp alg - ōBZip2(comp 3)ō
Comp alg - ōUncompressed(comp 0)ō
Hashed Sub: features(sub 30)(1 bytes)
Flag - Modification detection (packets 18 and 19)
Hashed Sub: key server preferences(sub 23)(1 bytes)
Flag - No-modify
Sub: issuer key ID(sub 16)(8 bytes)
Key ID - 0x93D3F6873020F6EB
Hash left 2 bytes - c7 9d
RSA m^d mod n(4095 bits) - ...
-> PKCS-1
\end{lstlisting}
\end{onlyenv}
\end{frame}
\subsection{hopenpgp}
\begin{frame}[c]{hopenpgp}
\begin{itemize}
\item OpenPGP Implementation in Haskell
\item Unvollständig
\item Super analysetools
\end{itemize}
\end{frame}
\begin{frame}[fragile]{hkt und GnuPG 2.1}
\begin{onlyenv}<1>
\begin{lstlisting}[style=base]
hkt \
export-pubkeys F1CC6A0D12BDDDEA4C462B0D93D3F6873020F6EB \
| hokey lint
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<2>
\begin{lstlisting}[style=base]
hkt (hopenpgp-tools) 0.20
Copyright (C) 2012-2018 Clint Adams
hkt comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under certain conditions.
hokey (hopenpgp-tools) 0.20
Copyright (C) 2012-2018 Clint Adams
hokey comes with ABSOLUTELY NO WARRANTY. This is free software, and you are welcome to redistribute it under certain conditions.
ōhkt: /home/pgptest/.gnupg/pubring.gpg: openBinaryFile: does not exist (No such file or directory)ō
hokey: Unexpected finalization failure
CallStack (from HasCallStack):
error, called at ./Codec/Encryption/OpenPGP/KeyringParser.hs:55:33 in hOpenPGP-2.5.5-7yNpuvQFfipH5zYNxJg4qw:Codec.Encryption.OpenPGP.KeyringParser
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<3>
\begin{itemize}
\item GnuPG 2.1 und neuer verwenden kein \texttt{pubring.gpg}
\begin{itemize}
\item Gilt nur für Neuinstallation
\end{itemize}
\item Neues \texttt{pubring.kbx} Format
\item von hopenpgp nicht unterstützt
\end{itemize}
\end{onlyenv}
\end{frame}
\begin{frame}[fragile]{hkt trotz GnuPG 2.1}
\begin{onlyenv}<1>
\begin{lstlisting}[style=base]
gpg \
--output .gnupg/pubring.gpg \
--export F1CC6A0D12BDDDEA4C462B0D93D3F6873020F6EB
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<2>
\begin{lstlisting}[style=base]
hkt \
export-pubkeys F1CC6A0D12BDDDEA4C462B0D93D3F6873020F6EB \
| hokey lint
\end{lstlisting}
\end{onlyenv}
\end{frame}
\begin{frame}[fragile]{hopenpgp output}
\begin{onlyenv}<1>
\begin{lstlisting}[style=base]
Key has potential validity: good
Key has fingerprint: F1CC 6A0D 12BD DDEA 4C46 2B0D 93D3 F687 3020 F6EB
Checking to see if key is OpenPGPv4: īV4ī
Checking to see if key is RSA or DSA (>= 2048-bit): īRSA 4096ī
Checking user-ID- and user-attribute-related items:
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<2>
\begin{lstlisting}[style=base]
vimja <demo@honet.ch>:
Self-sig hash algorithms: [SHA-512]
Preferred hash algorithms: ō[SHA-1, RIPEMD-160]ō
Key expiration times: ī[1m23d20493s = Sun Jul 1 10:00:00 UTC 2018]ī
Key usage flags: [ī[certify-keys]ī]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<3>
\begin{lstlisting}[style=base]
vimja <vimja@example.com>:
Self-sig hash algorithms: [SHA-512]
Preferred hash algorithms: ī[SHA-512, SHA-384, SHA-256]ī
Key expiration times: ī[1m23d20493s = Sun Jul 1 10:00:00 UTC 2018]ī
Key usage flags: [ī[certify-keys]ī]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<4>
\begin{lstlisting}[style=base]
Checking subkeys:
one of the subkeys is encryption-capable: īTrueī
fpr: ī2A94 31D8 8D8D 6866 5F14 B5A3 F48A 34AB 5D92 BD2Cī
version: īv4ī
timestamp: 20180508-181019
algo/size: ūunknown pubkey algorithm type 22ū ōunknownō
binding sig hash algorithms: [SHA-256]
usage flags: [ī[auth]ī]
embedded cross-cert: ūFalseū
cross-cert hash algorithms: [SHA-256]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<5>
\begin{lstlisting}[style=base]
fpr: ī6A76 710E 2A34 74A4 D13A 278B EE41 AAB9 C4E3 FFFCī
version: īv4ī
timestamp: 20180508-181156
algo/size: ūDSAū ō1024ō
binding sig hash algorithms: [RIPEMD-160]
usage flags: [ī[sign-data]ī]
embedded cross-cert: īTrueī
cross-cert hash algorithms: [RIPEMD-160]
\end{lstlisting}
\end{onlyenv}
\begin{onlyenv}<6>
\begin{lstlisting}[style=base]
fpr: īDBAA F271 F8A9 8DB7 86C4 CDEF 6B3F 9652 BF6E 7FA1ī
version: īv4ī
timestamp: 20180508-181206
algo/size: ūElgamal encrypt-only 2048ū
binding sig hash algorithms: [ōSHA-1ō]
usage flags: [ī[encrypt-storage, encrypt-communications]ī]
embedded cross-cert: False
cross-cert hash algorithms: [ōSHA-1ō]
\end{lstlisting}
\end{onlyenv}
\end{frame}
......@@ -42,6 +42,8 @@
breaklines=true,
basicstyle=\small\ttfamily\color{black},
moredelim=**[is][\color{red}]{ō}{ō},
moredelim=**[is][\color{green}]{ī}{ī},
moredelim=**[is][\color{orange}]{ū}{ū},
}
%-------------------------------------------------------
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment