Explore the concept of blind certificate authorities in this IEEE Symposium on Security & Privacy presentation. Delve into the construction of a system that can validate identities and provide certificates binding public keys without learning the actual identities. Discover secure channel injection protocols and their application in creating anonymous proofs of account ownership for SMTP servers. Learn how this innovative approach allows users to obtain X.509 certificates for email addresses without revealing their identities to the certificate authority. Examine the practical implementation of this system, including its compatibility with standard email servers and Gmail.
Overview
Syllabus
Introduction
Certificate Authorities
Secure Channel Injection
Anonymous Proof of Account Ownership
Simplified SMT Session
Certificate Generator
Summary
Taught by
IEEE Symposium on Security and Privacy
