Key server (cryptographic)

In computer security, a key server is a computer that receives and again serves absolute cryptographic

keys to users or added programs. The users' programs can be alive on the aforementioned arrangement as the key server or on addition networked computer

.

The keys broadcast by the key server are about consistently provided as allotment of a cryptographically-protected character affidavit absolute not alone the key but additionally 'entity' advice about the buyer of the key. The affidavit is usually in a accepted format, such as the OpenPGP accessible key format, the X.509 affidavit format, or the PKCS format. Further, the key is about consistently a accessible key for use with an agee key encryption algorithm.

History

Key servers are fabricated accessible by the apparatus of accessible key cryptography. In accessible key cryptography an alone is able to accomplish a key pair, area one of the keys is kept clandestine while the added is broadcast publicly. Knowledge of the accessible key does not accommodation the aegis of accessible key cryptography. An alone captivation the accessible key of a key brace can use that key to backpack out cryptographic operations that acquiesce abstruse communications with or able affidavit of the holder of the analogous clandestine key. The charge to accept the accessible key of a key brace in adjustment to alpha advice or verify signatures is a bootstrapping problem. Locating keys on the web or autograph to the alone allurement them to address their accessible keys can be time arresting and insecure. Key servers act as axial repositories to allay the charge to alone address accessible keys and can act as the base of a alternation of trust

.

The aboriginal web-based PGP keyserver was accounting for a apriorism by Marc Horowitz, while he was belief at MIT. Horowitz's keyserver was alleged the HKP Keyserver afterwards a web-based OpenPGP HTTP Keyserver Agreement (HKP) it acclimated to acquiesce bodies to collaborate with the keyserver. Users were able to upload, download, and chase keys either through HKP on anchorage 11371, or through web pages which ran CGI scripts. Before the conception of the HKP Keyserver, keyservers relied on email processing scripts for interaction

.

A abstracted key server, accepted as the PGP Certificate Server, was developed by PGP, Inc. and was acclimated as thecomputer application (through adaptation 2.5.x for the server) for the absence key server in PGP through adaptation 8.x (for the applicant software), keyserver.pgp.com. Network Associates was accepted a apparent co-authored by Jon Callas (United States Apparent 6336186)1 on the key server concept

.

To alter the crumbling Certificate Server, an LDAP-based key server was redesigned at Network Associates in allotment by Randy Harmon and Len Sassaman, alleged PGP Keyserver 7.0. With the absolution of PGP 6.0, LDAP was the adopted key server interface for Network Associates’ PGP versions. This LDAP and LDAPS key server (which additionally batten HKP for backwards compatibility, admitting the agreement was (arguably correctly) referred to as “HTTP” or “HTTPS”) additionally formed the base for the PGP Administration accoutrement for clandestine key servers in accumulated settings, forth with a action for Netscape Directory Server. It was after replaced by the fresh PGP Corporation Global Directory.

Public versus private keyservers

Many about attainable key servers, amid about the world, are computers which abundance

and accommodate OpenPGP keys over the Internet for users of that cryptosystem. In this instance, the computers can be, and mostly are, run by individuals as a pro bono service, facilitating the web of assurance archetypal PGP uses

.

Several about attainable S/MIME key servers are accessible to broadcast or retrieve certificates acclimated with the S/MIME cryptosystem

.

There are additionally assorted proprietary accessible key basement systems which advance key servers for their users; those may be clandestine or public, and alone the accommodating users are acceptable to be acquainted of the those keyservers at all.

Privacy concerns

For abounding individuals, the purpose of application cryptography is to access a college akin of aloofness in claimed interactions and relationships. It has been acicular out that acceptance a accessible key to be uploaded in a key server back application decentralized web of assurance based cryptographic systems, like PGP, may acknowledge a acceptable accord of advice that an alone may ambition to accept kept private. Since PGP relies on signatures on an individual's accessible key to actuate the actuality of that key, abeyant relationships can be appear by allegory the signers of a accustomed key. In this way, models of absolute amusing networks can be developed.

Problems with keyservers

The OpenPGP keyservers developed in the 1990s suffered from a few problems. Once a accessible key has been uploaded, it is difficult to remove. Some users stop application their accessible keys for assorted reasons, such as back they balloon their canyon phrase, or if their clandestine key is compromised or lost. In those cases, it was adamantine to annul a accessible key from the server, and alike if it were deleted, addition abroad can upload a beginning archetype of the aforementioned accessible key to the server. This leads to an accession of old deposit accessible keys that never go away, a anatomy of "keyserver plaque". Another botheration is that anyone can upload a artificial accessible key to the keyserver, address the name of a being who in actuality does not own that key. The keyserver had no

way to analysis to see if the key was legitimate

.

To break these problems, PGP Corp developed a fresh bearing of key server, alleged the PGP Global Directory. This keyserver beatific an email acceptance appeal to the accepted key owner, allurement that being to affirm that the key in catechism is theirs. If they affirm it, the PGP Global Directory accepts the key. This can be renewed periodically, to anticipate the accession of keyserver plaque. The aftereffect is a college affection accumulating of accessible keys, and anniversary key has been vetted by email with the key's credible owner. However, it should be acicular out that because PGP Global Directory allows key annual maintanence and verifies alone by email, not cryptographically, anybody accepting admission to the email annual could for archetype annul a key and upload a artificial one.

The aftermost IETF abstract for HKP additionally defines a broadcast key server network, based on DNS SRV records: to acquisition the key of someone@example.com, one can ask it to example.com's key server.

Keyserver Examples

These are some keyservers that are generally acclimated for attractive up keys with "gpg --recv-key"

keyserver hkp://subkeys.pgp.net (server pool

)

keyserver hkp://pgp.mit.

edu

keyserver hkp://pool.sks-keyservers.net (server pool

)

keyserver hkp://zimmermann.mayfirst.org (also supports anchored key requests over TLS)