<h1><center>TLS - Transport Layer Security<br /><br />and<br /><br />HTTPS - Secure HyperText Transfer Protocol</center></h1>
<h3><center>CS456 <br /><br />
    Dr. Joseph Gersch </center></h3>

----



## Lab Overview

You will learn how to deploy a web server that uses HTTPS over a secure encrypted TCP connection.  In order to do this you will create TLS self-signed certificates and use these certificate in a simple web server.

### Prerequisites

All of the python libraries and command dependencies to successfully run this lab should already be installed and available on the CS lab machines.  This jupyter notebook can be run on a CS lab machine and you can use SSH tunnels to view the notebook on your local laptop.

I encourage you download and run this lab on your own personal computer.  You may have to install the FLASK web server (`pip install flask`) if you don't already have it.  You will also have to download the `openssl` command for your particular OS.  Examples are `brew install openssl` for MAC, and `apt-get install openssl` for Ubuntu.  There are web pages that show how to intall it on Windows.  Once installed and the $PATH variables set up, test to see if the command works by typing:
> `openssl version`

and you should get a response similar to:

> `OpenSSL 1.1.1d  10 Sep 2019`


### Table of Contents

  1. [Create and deploy a FLASK web server](#deploy_web_server) (without TLS for now)
  2. [Create the x.509 Certificates Needed by TLS](#create_certificates)
      1. [Become your own CA so you can issue certificates](#become_CA)
      2. [Create your web server certificate](#create_web_certificate)
          1. [Create a "Certificate Signing Request" (CSR) for your web server](#create_CSR)
          2. [Verify the CSR](#verify_CSR)
          3. [Submit the CSR to the CA](#submit_CSR)
          4. [CA sign CSR to create web server certificate](#sign_CSR)
  3.  [Test the TLS certificates with your web server](#test_TLS)
  4.  [OPENSSL one-step method to build a self-signed certificate](#one_step_certificates)
  5.  [Commercial Certificate Authorities and "Lets-Encrypt" Free Certificates](#commercial_certificates)
  6.  [Miscellaneous Experiments to perform and submit](#misc_experiments)
  7.  [What to submit to CANVAS](#submit_to_canvas)
  8.  [Grading Rubric](#grading_rubric)

### Citations

This lab is inspired by the article [*Exploring HTTPS with Python*](  https://realpython.com/python-https/) and a tutorial from Miguel Grinberg's blog on how to use FLASK with TLS.  Some text and code are copied from these sites.  

### Tasks

You will be instructed from time to time to answer questions, collect data, screen shots, and wireshark information to submit to Canvas.

----
<a id='deploy_web_server'></a>
## 1. Create and deploy a FLASK web server

In this lab we are going to create a tiny web server using FLASK.  We can then use `wget`, `curl` or simply use a web browser to fetch the contents of the web page.  

Our first attempt will NOT use TLS.  Anything returned by the web-server will be "in the clear" and wireshark can see the cleartext data.  This is not good if we want to keep secrets.

We will then show how to use TLS by creating the appropriate crypto certificates and re-starting the web-server enabled to use TLS.  This will keep our communication safe because it encrypts the data-in-motion between the client and the server.  Wireshark will be unable to interpret the data because it is encrpypted.

Use SHIFT-EXECUTE to execute the following code cell.  This first cell will simply write the python code to a file named `web-server.py`.  

**Next, use a new terminal window (or tab) to run the program by typing `python web-server.py`.  Leave the program running and come back to this notebook.**

*Note: you may have to `pip install flask` if it is not installed in your system.  The lab systems should already have it installed.  Do this installation in a separate terminal window.*

In [None]:
%%writefile web-server.py

# web-server.py   
# secret message about squirrels!

from flask import Flask

SECRET_MESSAGE = "fluffy tail"
app = Flask(__name__)

@app.route("/")
def get_secret_message():
    return SECRET_MESSAGE

if __name__ == "__main__":
    app.run(port=4567)

Let's make sure the server is running. Go to a web browser and enter the following URL:

> `http://localhost:4567`

You should get the following super-exciting response to your HTTP request:

<img src='http://cs.colostate.edu/~cs456/images/TLS_Browser_Screen.png' width='600px' />

You can also use `wget` and `curl` commands to fetch the data from your tiny web server.  Execute the following shell commands in the next two cells using SHIFT-EXECUTE. In both cases the web server should return the secret message.  

In [1]:
! wget -qO- localhost:4567

fluffy tail

In [2]:
! curl http://localhost:4567

fluffy tail

Run one of the cells again, but this time capture the network traffic on localhost using wireshark.  Your wireshark data should look like the screen capture shown below.  Notice that anyone listening in can see the secret message.  This is definitely not a good state of affairs...

----


<img src=http://cs.colostate.edu/~cs456/images/TLS_Wireshark_1.png width="750px" />
    

**You should stop the web server now by using CTL-C in the terminal window.  We will start it up again later with TLS enabled.**

----
<a id='create_certificates'></a>

## 2. Create the x.509 Certificates needed by TLS


x.509 public-key certificates are used during a TLS handshake to establish a secure encrypted internet connection.   

As an analogy, think of TLS certificates as passports for the internet.  In order to travel to another country in the real world you have to get a passport issued from your home country.  Information in the passport shows informations such as "issued by", "issued to", and the validity period from "issue date" to "expiration date".  

To get a passport you have to apply for one in your home country and prove you are who you say you are by providing various credentials such as birth certificate, driver's license, etc.  Furthermore, not just any entity can issue a passport.  Imagine trying to enter a country with a passport issued from the non-existant country "Gerschonia".  Immigration Control will send you right back home!!!

TLS certificates are issued in a similar manner.  Instead of being issued by a country, certificates are issued by well-known **Trusted Third Parties** known as *Certificate Authorities* (CA).   What is meant by "well-known"? A CA must go through rigorous checks and follow strict security procedures before it can become certified as a CA.  Web browsers maintain a list of registered CAs that they then use as roots-of-trust.    Any certificate issued by one of these CAs is considered as trustworthy by your web browser.  

How many CAs are there on planet Earth?  There are hundreds of CAs throughout the globe.  Your web browser  keeps a list of trusted CA's  in your web browser's trust-store.  In Firefox you can view the list of trusted CAs by going to `Preferences, Security & Privacy, View Certificates`.  There are similar mechanisms in other browsers.  A sample screen-shot showing just a few of the trusted CAs in Firefox is shown below:

<img src="http://cs.colostate.edu/~cs456/images/TLS_CA_List.png" width='700px' />

### Task 1

View the list of trusted Certificate Authorities in your favorite browser.  Answer the following two questions; instructions for submitting your answers will be given at the end of this Jupyter notebook.

1.  Is `Let's Encrypt` listed as a trusted CA?  (Yes or No)
2.  Is `Internet Security Research Group (ISRG)` listed as a trusted CA?

<a id='become_CA'></a>
### 2A.  Become your own CA so you can issue Certificates

It is possible for you to be a root CA, but as you will see later, you won't be trusted as an "official CA" by the browser because you aren't listed in the browser's trust store.  Let's ignore that problem for now and make you a CA anyway.

There are several ways to create self-signed certificates identifying you as a CA.  You can use `openssl` commands to create the certificates, or you can do it with python.  We will first use python to issue the CA certificates, and then show you how to use `openssl` to create the server certificates.  

Execute the cell below to instantiate the python functions.  You won't see any output because all you are doing is defining functions to be used later.

In [3]:
# python functions for generating keys and certificates

from cryptography.hazmat.backends import default_backend
from cryptography.hazmat.primitives import serialization
from cryptography.hazmat.primitives.asymmetric import rsa
from datetime import datetime, timedelta
from cryptography import x509
from cryptography.x509.oid import NameOID
from cryptography.hazmat.primitives import hashes

#############################################################################
#
#    Python Function to Generate a Private Key and write to a .pem file
#
#############################################################################

def generate_private_key(filename: str, passphrase: str):
    private_key = rsa.generate_private_key(
        public_exponent=65537, key_size=2048, backend=default_backend()
    )

    utf8_pass = passphrase.encode("utf-8")
    algorithm = serialization.BestAvailableEncryption(utf8_pass)

    with open(filename, "wb") as keyfile:
        keyfile.write(
            private_key.private_bytes(
                encoding=serialization.Encoding.PEM,
                format=serialization.PrivateFormat.TraditionalOpenSSL,
                encryption_algorithm=algorithm,
            )
        )

    return private_key

#############################################################################
#
#    Python Function to Generate a Public Key and write to a .pem file
#
#############################################################################

def generate_public_key(private_key, filename, **kwargs):
    subject = x509.Name(
        [
            x509.NameAttribute(NameOID.COUNTRY_NAME, kwargs["country"]),
            x509.NameAttribute(
                NameOID.STATE_OR_PROVINCE_NAME, kwargs["state"]
            ),
            x509.NameAttribute(NameOID.LOCALITY_NAME, kwargs["locality"]),
            x509.NameAttribute(NameOID.ORGANIZATION_NAME, kwargs["org"]),
            x509.NameAttribute(NameOID.COMMON_NAME, kwargs["hostname"]),
        ]
    )

    # Because this is self signed, the issuer is always the subject
    issuer = subject

    # This certificate is valid from now until 90 days
    valid_from = datetime.utcnow()
    valid_to = valid_from + timedelta(days=90)

    # Used to build the certificate
    builder = (
        x509.CertificateBuilder()
        .subject_name(subject)
        .issuer_name(issuer)
        .public_key(private_key.public_key())
        .serial_number(x509.random_serial_number())
        .not_valid_before(valid_from)
        .not_valid_after(valid_to)
    )

    # Sign the certificate with the private key
    public_key = builder.sign(
        private_key, hashes.SHA256(), default_backend()
    )

    with open(filename, "wb") as certfile:
        certfile.write(public_key.public_bytes(serialization.Encoding.PEM))

    return public_key

Execute the next cell to actually generate the CA private key and public certificate.  Note that we are calling ourselves *CS456 Trustworthy CA* and that we are using our newly generated private key to digitally sign the public key certificate (All CA root certificates are self-signed).  The private key is *NOT* store in cleartext. As you can see from the code below, the private key is encrypted on disk using the pass phrase *secret_password*.

In [4]:
private_key = generate_private_key("ca-private-key.pem", "secret_password")
print (private_key)

generate_public_key(private_key, 
                    filename="ca-public-key.pem",
                    country="US",
                    state="Colorado",
                    locality="Fort Collins",
                    org="CS456 Trustworthy CA",
                    hostname="cs456-trustworthy-ca.com",
)


<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x7ffbb8602c90>


<Certificate(subject=<Name(C=US,ST=Colorado,L=Fort Collins,O=CS456 Trustworthy CA,CN=cs456-trustworthy-ca.com)>, ...)>

The following cell will list off the files we just created, and then show the contents of the files.  This content is in base64 encoding, so it won't be obvious at this point what the contents are actually saying.

In [5]:
! ls ca*
! echo 
! cat ca-private-key.pem
! echo 
! cat ca-public-key.pem

ca-private-key.pem ca-public-key.pem

-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: AES-256-CBC,C9EA87BE792E013EE99FF10D6BC97F58
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Fortunately we can view readable contents of the public certificate by
using the `openssl x509` command.  You should read the `man` page for openssl to see the many things this command can do from generating keys, viewing certificates, etc.  A good summary of commonly used `openssl` command can be found at the web site [OPENSSL Cheat Sheet](https://www.freecodecamp.org/news/openssl-command-cheatsheet-b441be1e8c4a/)

Execute the following cell to view our new CA public certificate.  Note that the both issuer of the certificate and the subject of the certificate is *cs456 Trustworthy CA*.  

In [6]:
! openssl x509 -in ca-public-key.pem -text -noout

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:de:6b:b5:e8:d5:2c:d5:d1:1a:47:69:ca:40:8f:2c:6e:a9:08:bd
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C = US, ST = Colorado, L = Fort Collins, O = CS456 Trustworthy CA, CN = cs456-trustworthy-ca.com
        Validity
            Not Before: Jul 21 19:59:22 2020 GMT
            Not After : Oct 19 19:59:22 2020 GMT
        Subject: C = US, ST = Colorado, L = Fort Collins, O = CS456 Trustworthy CA, CN = cs456-trustworthy-ca.com
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:4c:51:cb:ff:73:73:0e:2d:d4:8d:fe:c6:53:
                    7a:01:42:ea:4e:cd:c3:f6:bc:e2:ed:53:ab:5c:19:
                    dc:6c:bd:b3:c6:f0:90:63:fb:12:dc:94:c6:bf:88:
                    64:5c:06:4a:d2:38:aa:86:ce:01:ed:a3:ea:8b:a7:
                    66:16:2d:7

**Congratulations!! You are now a certificate authority!** 

The 2 files that we just created are all you need.

Note, if you had used `openssl` to create the self-signed CA certificate, you would have had to define an `openssl configuration file` to properly build the certificate.  You would then use the `openssl ca` command with lots of options that you can read about on your own if you wish.  

We avoided that hassle by using python to generate the CA self-signed certificate.  In real life you would most likely use `openssl`, however. 

----

<a id='create_web_certificate'> </a>
### 2B. Create Your Web Server Certificate

There are several steps required to generate your site's web server certificate:

1. Create a Certificate Signing Request (CSR): This is like filling out the information for your visa.
2. Send the CSR to a "Trusted Third Party (TTP)" Certificate Authority (CA): This is like sending your information into a visa application office.
3. The CA will verify your information:  CAs use a variety of verification techniques.
4. The CA generate your Public Key by digitally signing your CSR. This is equivalent to the TTP signing your visa.
5. Issue the verified Public Key: This is equivalent to you receiving your visa in the mail.

You will now execute each of these steps.


----

<a id='create_CSR'> </a>
#### Create a Certificate Signing Request (CSR)

The first step to your web server becoming trusted is for you to generate a Certificate Signing Request (CSR). In the real world, the CSR would be sent to an actual Certificate Authority like Verisign or Let’s Encrypt. In this lab assignment, you’ll use the CA you just created.

**Open a terminal window and ensure that you have cd'ed to the same directory as this lab notebook.  Verify that the CA certificates you created are in this directory.  Now, copy and paste the following command to a terminal window:**

>`openssl req -out CSR.csr  -newkey rsa:2048  -keyout server-private-key.key`

This is an interactive command that will first create a private key for your web server (protected with a pass phrase) and then create your CSR.  The private key is used to digitally sign the CSR.  

The program will ask you many questions.    The cell below shows an example using `Invykta LLC` as the organization name and `localhost` as the web site domain.  The domain could also be specified as a list and include both `localhost` and `invykta.com` as domains. 

Answer the interactive questions as you like... make up your own company in any country you like).  **Do NOT use the same answers as shown below.  For "organizational unit name", use your own name so the TAs can verify you did your own work.**

```
openssl req -out CSR.csr -new -newkey rsa:2048  -keyout server-private-key.key
Generating a RSA private key
....................................................................................................................+++++
......................+++++
writing new private key to 'server-private-key.key'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:Colorado
Locality Name (eg, city) []:Loveland
Organization Name (eg, company) [Internet Widgits Pty Ltd]:Invykta LLC
Organizational Unit Name (eg, section) []:World Headquarters
Common Name (e.g. server FQDN or YOUR name) []:localhost
Email Address []:

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:```

<a id='verify_CSR'> </a>
#### Verify the CSR

Next, make sure the CSR got created properly.  Execute the following cell to view the contents of the CSR.
If you don't like what you see, just re-execute the OPENSSL request to re-create the CSR and answer the 
questions again.

In [7]:
! openssl req -text -noout -verify -in CSR.csr

verify OK
Certificate Request:
    Data:
        Version: 1 (0x0)
        Subject: C = US, ST = CO, L = Berthoud, O = Invykta LLC, OU = Women's Underwear, CN = invykta.com, emailAddress = localhost
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:6f:a4:dc:12:27:87:a8:12:3c:de:32:9c:fa:
                    36:e2:dd:5e:6f:15:b6:9e:8d:65:79:e1:81:60:e9:
                    09:26:c3:c9:4b:47:e3:0e:9f:c7:23:39:9d:24:cf:
                    bd:89:24:d9:8a:0d:df:b0:39:7d:f0:ee:ae:62:92:
                    24:52:eb:ac:3e:90:5a:d9:2d:5a:b6:5f:3c:9e:ee:
                    50:d4:97:11:e3:b5:52:fc:6f:54:e1:fe:f8:2c:f6:
                    e5:07:8e:b0:01:cd:2e:c9:b9:d6:d8:c8:8b:b8:5c:
                    3b:a6:4c:8b:bd:9b:87:e1:57:88:e3:67:2a:8d:84:
                    69:70:cb:09:50:f5:e7:8d:22:70:d2:77:46:4f:a0:
                    b0:53:0b:05:cf:66:ca:

<a id='submit_CSR'> </a>
#### Submit the CSR to be digitally signed by the CA 

In the real world, the CA would make sure that you owned invykta.com (or whatever you called your web-site) and ask you to prove it in various ways.

Since you are the CA in this case, you can forego the verification since you probably trust yourself (...OK...I don't trust myself, but I'm an exception...). 

<a id='sign_CSR'> </a>
#### Sign the CSR to generate the web-server certificate

You, acting a a CA, will now digitally sign the CSR.  Shift-execute the cell below to perform the signing.  The program uses the CSR, as well as the CA's private key and public certificate.   The final output is an x.509 certificate named `server-public-key.pem`.  

This PEM gets sent back to the requesting organization to be used for TLS.

In [9]:
from cryptography import x509
from cryptography.hazmat.backends import default_backend

##################################################################
#
#  Function used by a CA to sign a CSR
#
##################################################################

def sign_csr(csr, ca_public_key, ca_private_key, new_filename):
    valid_from = datetime.utcnow()
    valid_until = valid_from + timedelta(days=30)

    builder = (
        x509.CertificateBuilder()
        .subject_name(csr.subject)
        .issuer_name(ca_public_key.subject)
        .public_key(csr.public_key())
        .serial_number(x509.random_serial_number())
        .not_valid_before(valid_from)
        .not_valid_after(valid_until)
    )

    for extension in csr.extensions:
        builder = builder.add_extension(extension.value, extension.critical)

    public_key = builder.sign(
        private_key=ca_private_key,
        algorithm=hashes.SHA256(),
        backend=default_backend(),
    )

    with open(new_filename, "wb") as keyfile:
        keyfile.write(public_key.public_bytes(serialization.Encoding.PEM))
        
##########################################################################
#
#    Main routine to sign the CSR
#
##########################################################################

# Load the CSR
csr_file = open("CSR.csr", "rb")
csr = x509.load_pem_x509_csr(csr_file.read(), default_backend())
print (csr)

# Load the CA's public key
ca_public_key_file = open("ca-public-key.pem", "rb")
ca_public_key = x509.load_pem_x509_certificate( ca_public_key_file.read(), default_backend() )
print (ca_public_key)

# Load the CA private key.  
# ******. Remember to input your passphrase for the CA private key!!!
#
from getpass import getpass  # password reader
from cryptography.hazmat.primitives import serialization
ca_private_key_file = open("ca-private-key.pem", "rb")
ca_private_key = serialization.load_pem_private_key( ca_private_key_file.read(),
                                                     getpass().encode("utf-8"),
                                                     default_backend(),
)

print (private_key)

# Sign the CSR and create the server public key certificate
sign_csr(csr, ca_public_key, ca_private_key, "server-public-key.pem")

<cryptography.hazmat.backends.openssl.x509._CertificateSigningRequest object at 0x7ffba873d550>
<Certificate(subject=<Name(C=US,ST=Colorado,L=Fort Collins,O=CS456 Trustworthy CA,CN=cs456-trustworthy-ca.com)>, ...)>
········
<cryptography.hazmat.backends.openssl.rsa._RSAPrivateKey object at 0x7ffbb8602c90>


### Task 2

Execute the cell below, then copy and paste the output to be submitted to CANVAS.

In [10]:
# make sure the new server certificate file has been created and examine it in BASE64 and with openSSL

! ls server*
! cat server-public-key.pem
! openssl x509 -in server-public-key.pem -text -noout

server-private-key.key server-public-key.pem
-----BEGIN CERTIFICATE-----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<a id='test_TLS'> </a>
## 3.  Test your TLS certificates with your web server

We have to make a minor adjustment to the FLASK web server to enable TLS/HTTPS. You will see this adjustment in the last line of code below. 

Use SHIFT-EXECUTE to execute the following code cell to over-write `web-server.py` with TLS enabled.  

**Next, use a new terminal window (or tab) to run the program by typing `python web-server.py`.  You MUST enter your password (secret_password) to get the server to run.**

**Leave the program running and come back to this notebook.**

In [11]:
%%writefile web-server.py

# web-server.py   
# secret message about squirrels!

from flask import Flask

SECRET_MESSAGE = "fluffy tail"
app = Flask(__name__)

@app.route("/")
def get_secret_message():
    return SECRET_MESSAGE

if __name__ == "__main__":
    app.run(port=4567, ssl_context=( 'server-public-key.pem', 'server-private-key.key') )  #ssl_context=('cert.crt', 'key.pem'))

Overwriting web-server.py


Now bring up a web browser and enter the following into the URL bar:

>`http://localhost:4567`

This command should fail to bring up the web page because it didn't specify HTTPS.  Try again with the following, and capture the web traffic with wireshark.

>`https://localhost:4567`

### Task 3

You will once again fail because your browser doesn't trust the certificate yet.  Go through the browser options to "view the certificate" and take a screenshot to submit to Canvas.  It should look something like the following, only the subject information will be your own information containing your name.

Tell your browser that you "accept the risk" and proceed to view the "fluffy tail" web page with HTTPS.

Examine the wireshark output and you will notice that the TLS handshake has occurred and the data has been encrypted.  You do not have to turn in a wireshark screenshot.

<img src="http://cs.colostate.edu/~cs456/images/TLS_Certificate_From_CA.png" width="600px" />

<a id='one_step_certificates'> </a>
### 4.  One-Step TLS certificates via OpenSSL  

As it turns out, you don't have to go through all these steps if the only thing you want to do is to create a self-signed certificate.  I had you do these steps as a learning exercise so that you would see the difference between *being a CA* and *being a certificate requestor for a web site*.

The following `openssl` command is all you need to create a self-signed web server certificate.  It will ask the usual interactive questions for you state the location and domain name, etc.  In this case the *issuer* and the *subject* will be the same organization.

>`openssl req -x509 -sha256 -days 365 -newkey rsa:2048 -keyout key.pem -out cert.crt`

Feel free to try this out on your own.

<a id='commercial_certificates'> </a>
### 5. Commercial Certificates and "Let's Encrypt"

Self-signed certificates are generally pretty useless for web servers.  Ordinary users don't know what to do when they get the browser warning "UNSAFE WEB SITE -- PROCEED AT OWN RISK".  

Real web sites create CSRs and send them to commercial CA companies such as VERISIGN or COMODO.  These organizations charge from $80 per year to several hundred dollars per year.

In order to encourage higher adoption of TLS, several organizations incuding the EFF (Electronic Freedom Foundation), Mozilla, Cisco and many others sponsored the creation of *Let's Encrypt*, a site that issues **free** TLS certificates.  These certificates are trusted by all popular browsers.  

*Let's Encrypt* has issued over one billion TLS certificates.

<a id='misc_experiments'></a>
### 6.  Miscellaneous Experiments to perform and submit to Canvas 

I hope you read the `openssl cheat sheet`.  You are going to need that to answer the following questions to submit to CANVAS.

### task 4

Perform the following experiments and submit the results to Canvas.  You will have to figure out the appropriate openssl and other commands to execute. 

1.  (10 points) Who issued the certificate for colostate.edu?
2.  (10 points) Who issued the certificate for chase.com (the credit card and banking company)

### task 5

Occasionally a certificate gets compromised, either by mistakenly publishing the private key, or by hackers stealing the private key.  

If such an event should occur, the certificate owner MUST request the CA to **revoke** the current certificate and re-issue a new certificate with a new private key.  

CRL (Certificate Revocation List) and OCSP (Online Certificate Status Protocol) are mechanisms used by Certificate Authorities to keep track of revoked certificates.  Get the certificate for cs.colostate.edu and then copy/paste the certificate into the site https://decoder.link/ocsp to check whether the certificate is good or has been revoked.  

1. (10 points) Who is the OCSP responder?  (OCSP: Online Certificate Status Protocol)
2.  (10 points) Is the certificate valid or revoked?  


<a id='submit_to_canvas'> </a>
### 7. What to Submit to Canvas

Copy and paste all your answers to tasks 1 through 5 onto a word document and submit this to Canvas.  You may optionally convert the document to PDF format.

<a id='grading_rubric'></a>
### 8. Grading Rubric

* Task 1:  20 points
* Task 2:  20 points
* Task 3:  20 points
* Task 4:  20 points
* Task 5:  20 points

Total points: 100
