webid4vivo erich bremer and tammy diprima stony brook university july 18, 2013 preview! beta! beta!...
TRANSCRIPT
WebID4VIVO
Erich Bremer and Tammy DiPrimaStony Brook University
July 18, 2013
PREVIEW
!
BETA! BETA! BETA! BETA! BETA! BETA! BETA! BETA!
BETA! BETA! BETA! BETA! BETA! BETA! BETA! BETA!
BETA! BETA! BETA! BETA!BE
TA! B
ETA!
BET
A! B
ETA!
What is WebID?Single Sign-on authenticationNo Passwords (uses digital certificates)Central Identity
Being developed by the W3C WebID Community Group67 Members, Henry Story – Chair
Originally, it went under the name foaf+sslThe term "WebID" was coined by Dan Brickley and Tim Berners-Lee in 2000
Hopefully, WebID will be in the standards track this year… (fingers crossed)
Key A – I can’t decrypt what I encrypt, but I can decrypt anything Key B encryptsKey B – I can’t decrypt what I encrypt, but I can decrypt anything Key A encrypts
Pick A/B or B/AOne becomes “Public key”The other the “Private key” Once selection is made, never change it!
How this mathematical relationship works is the subject of another talk…
How does WebID work in a Nutshell?Public Key Encryption
A behind
the s
cenes
look…
How does WebID work in a Nutshell?Version: 3 (0x2)Serial Number: 5f:df:d6:be:2c:73:c1:fb:aa:2a:2d:23:a6:91:3b:5cIssuer: O=FOAF+SSL, OU=The Community of Self Signers, CN=Not a Certification Authority ValidityNot Before: Jun 8 14:16:14 2010 GMTNot After : Jun 8 16:16:14 2010GMT Subject: O=FOAF+SSL, OU=The Community Of Self Signers, CN=WebID for Erich BremerSubject Public Key Info:
Public Key Algorithm: rsaEncryption Public-Key: (2048 bit)Modulus: B8:CD:08:20:2D:…….(much much longer than this!)Exponent: 65537 (0x10001)
X509v3 extensions: X509v3Basic Constraints: critical
CA:FALSEX509v3 Key Usage: critical
Digital Signature, Non Repudiation, Key Encipherment, Key AgreementNetscape Cert Type: SSL Client, S/MIMEX509v3 Subject Key Identifier: 08:8E:A5:5B:AE:5D:C3:8B:00:B7:30:62:65:2A:5A:F5:D2:E9:00:FA X509v3Subject Alternative Name: critical
URI:http://www.ebremer.com/foaf.rdf#meSignature Algorithm: sha1WithRSAEncryption
c0:fd:ac:bc:fb:1b:c9:e0:1c:01:18:5e:44:bb: d8:b8:……. (another really really long string)
The X509v3 Certificate
A Sample WebID profile (non-vivo)<http://www.ebremer.com/foaf.rdf#me> a foaf:Person ; foaf:family_name "Bremer" ; foaf:firstName "Erich" ; foaf:knows <http://bblfish.net/people/henry/card#me> ; foaf:knows <http://tdiprima.com/foaf.rdf#me> foaf:status "Happy" ; cert:key [ a cert:RSAPublicKey ; cert:exponent 65537 ; cert:modulus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http://www.w3.org/2001/XMLSchema#hexBinary> ] ;
How does WebID work in a Nutshell?The Process
Auth Server
Jon Client
Jon Client’s WebID profile server
Hey, I want to log onGive me your
WebID certificateProve to me you have the private key to this
public keyGive me the WebID
profile for the URI listed in this WebID certificate
Here ya go!
Here ya go!
Compares modulus and exponent of
WebID cert to the WebID profile
Here ya go!
Hi Jon!
WebID and VIVO make for great dance partners
WebID4VIVO• Allows VIVO to accept WebID for authentication• Allows VIVO to be a WebID provider• Leverages the fact that VIVO provides RDF foundation for WebID• Installs within and along side VIVO itself• moves data in and out of VIVO using VIVO DAO’s to maintain portability
will be available at the low price of free and open-source (BSD – same as VIVO :-)
WebID and VIVO (WebID4VIVO)
Possible Future directions using WebID and VIVOW3C WebAccessControl Ontology
http://www.w3.org/wiki/WebAccessControlEnable inter-VIVO logins allowing remote delegated editors.
Web Of Trust Ontologyhttp://xmlns.com/wot/0.1/
Open Annotations Model (W3C Community Group)http://www.openannotation.org/spec/core/
Link Data Platform (W3C Working Group)http://www.w3.org/2012/ldp/wiki/Main_Page
DEMO TIME!
Learn more about WebID at:http://www.w3.org/wiki/WebID