Tag: certificate

Add Danish NemID X.509 public certificate to RIPE Database

General

If you ever used the RIPE Database.

You know the following RIPE Maintainer Authentication methods is possible.

  1. SSO (a.k.a. single sign on)
  2. key-cert (GnuPG keys + X.509 certificate)
  3. MD5 encrypted passwords

NemID

  1. IF you have the danish NemID follow the guidelines here to configure NemID on your computer. And then for you email program.
  2. Go find your public certificate here and download it.
  3. Open the certificate locally on your computer and prepend every line with ‘certif: ‘ so it looks the example below. Remember the key-value pairs:
    • key-cert: auto
    • mnt-by: xyz
    • source: ripe

Example

  • from older RIPE documentation.
key-cert: AUTO-1
certif: -----BEGIN CERTIFICATE-----
certif: MIID8zCCA1ygAwIBAgICAIIwDQYJKoZIhvcNAQEEBQAwcTELMAkGA1UEBhMCRVUx
certif: EDAOBgNVBAgTB0hvbGxhbmQxEDAOBgNVBAoTB25jY0RFTU8xHTAbBgNVBAMTFFNv
certif: ZnR3YXJlIFBLSSBUZXN0aW5nMR8wHQYJKoZIhvcNAQkBFhBzb2Z0aWVzQHJpcGUu
certif: bmV0MB4XDTAzMDkwODEwMjYxMloXDTA0MDkwNzEwMjYxMlowfTELMAkGA1UEBhMC
certif: TkwxETAPBgNVBAoTCFJJUEUgTkNDMRAwDgYDVQQLEwdNZW1iZXJzMRgwFgYDVQQD
certif: Ew91ay5idC50ZXN0LXVzZXIxLzAtBgkqhkiG9w0BCQEWIHRlc3QtdXNlckBsaW51
certif: eC50ZXN0bGFiLnJpcGUubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC
certif: AQEArv3srxyl1QA3uS4dxdZbSsGrfBrMRjMb81Gnx0nqa6i+RziIf13lszB/EYy0
certif: PgLpQFdGLdhUQ52YsiGOUmMtnaWNHnEJrBUc8/fdnA6GVdfF8AEw1PTfJ6t2Cdc9
certif: 2SwaF+5kCaUDwmlOgbM333IQmU03l3I1ILs32RpQyZ+df/ovHNrVzeLc2P59isac
certif: bfjM2S0SXPQzHjuVLH40eOgVuXA/5LAYs51eXqwtKszSxFhqekf+BAEcRDrXmIT4
certif: e3zfiZOsXKe0UfaEABgHUMrYjsUCJ8NTMg6XiVSNwQQmXCdUbRvK7zOCe2iCX15y
certif: 9hNXxhY/q/IW54W5it7jGXq/7wIDAQABo4IBCDCCAQQwCQYDVR0TBAIwADARBglg
certif: hkgBhvhCAQEEBAMCBaAwCwYDVR0PBAQDAgXgMBoGCWCGSAGG+EIBDQQNFgtSSVBF
certif: IE5DQyBDQTAdBgNVHQ4EFgQUzdajNaRorkDTAW5O6Hpa3z9pP3AwgZsGA1UdIwSB
certif: kzCBkIAUHpLUfvaBVfxXVCcT0kh9NJeH7ouhdaRzMHExCzAJBgNVBAYTAkVVMRAw
certif: DgYDVQQIEwdIb2xsYW5kMRAwDgYDVQQKEwduY2NERU1PMR0wGwYDVQQDExRTb2Z0
certif: d2FyZSBQS0kgVGVzdGluZzEfMB0GCSqGSIb3DQEJARYQc29mdGllc0ByaXBlLm5l
certif: dIIBADANBgkqhkiG9w0BAQQFAAOBgQByg8L8RaiIz5k7n5jVwM/0oHSf48KRMBdn
certif: YdN2+eoEjVQbz48NtjbBTsOiUYj5AQWRHJrKtDQ+odbog0x7UsvhXjjBo/abJ6vI
certif: AupjnxP3KpSe73zmBUiMU8mvXLibPP1xuI2FPM70Y7fgeUehbmT7wdgqs7TEtYww
certif: PeUqjPPTZg==
certif: -----END CERTIFICATE-----
mnt-by: YOUR-MNT
source: RIPE

Afterwards you should be able to sign emails send to “RIPE Database” <auto-dbm@ripe.net> with your NemID certificate and the updates gets approved if your maintainer has authorization over the object you try to create/modify/delete.

 

My X.509 certificate

Compiled list of Acronyms in the Network Field of A LOT of Things

The list is still subject to updates and changes  from time to time.
Last updated: 20170121.
AcronymDefinitionComment
AcronymDefinitionComment
6PEIPv6 Provider Edge Router
6VPEIPv6 Virtual Private Network Provider Edge Router
ABCAbstract Base Class
ACEAccess Control Entry
ACIDAtomicity, Consistency, Isolation, and Durability
ACLAccess Control List
ACPIAdvanced Configuration and Power Interface
ADOActiveX® Data Objects
ADSIActive Directory Service Interfaces
AFAddress Family
AFIAddress Family Identifier
AICApplication Integration Component
ANSIAmerican National Standards Institute
ANSI SQLAmerican National Standards Institute Structured Query Language
APIApplication Programming Interface
APMAdvanced Power Management
APPCAdvanced Program-to-Program Communication
ARPAddress Resolution Protocol
ASAAdaptive Security ApplicanceCisco
ASAvAdaptive Security Virtual ApplicanceCisco
ASCIIAmerican Standard Code for Information Interchange
ASPActive Server Pages
ASRAggregation Service RoutersCisco
ATLActiveX® Library Template
ATMAsynchronous Transfer Mode
AXFRAsynchronous Full Transfer Zone
BASHBourne Again Shell
BDCBackup Domain Controller
BDMBusiness Development Manager
BFDBidirectional Forwarding Detection
BGPBorder Gateway Protocol
BINLBoot Information Negotiation Layer
BIOSBasic Input/Output System
BLOBBinary Large Object
BSDBerkeley Software Distribution
CACertification Authority
CALClient Access License
CDFSCompact Disk File System
CECustomer Edge Router
CICSCustomer Interface Control System
CIFSCommon Internet File System
CIM1. Common Information Model
2. Computer Information Model
CIPCommerce Interchange Pipeline
CLBComponent Load Balancing
CLSIDClass Identifier
CMOSComplementary Metal Oxide Semiconductor
COFFCommon Object File Format
COMComponent Object Model
COMAdminComponent Services Administration
CoPP
CORBACommon Object Request Broker Architecture
CPECustomer Premise Equipment
CRMCompensating Resource Manager
CSMICICS Mirror Transaction
CSRCloud Services RouterCisco
CSR-XCarrier Routing SystemCisco
cSRXJuniper
CTMCoordinating Transaction Manager
DACLDiscretionary Access Control List
DBDatabase
DBGDebug Format
DBMSDatabase Management System
DCOMDistributed Component Object Mode
DDF1. Distributed Database Facility
2. Data Decryption Field
DDLData Definition Language
DDM/DRDADistributed Data Management / Distributed Relational Data Access
DDNSDynamic Domain Name Service
DFSDistributed File System
DHCPDynamic Host Configuration Protocol
DHTMLDynamic HTML
DLLDynamic-link Library
DMIDesktop Management Interface
DMLData Manipulation/Modification Language
DMTF1. Distributed Management Task Force
2. Desktop Management Task Force
DNADistributed InterNet Applications
DNSDomain Name System
DPADemand Protocol Architecture
DPLDistributed Program Link
DRFData Recovery Field
DSADirectory System Agent
DSN1. Data Source Name
2. Domain Server Name
DTCDistributed Transaction Coordinator
DTDDocument Type Definition
DTSData Transformation Services
DVDDigital Video (or Versatile) Disk
EAP1. Extensible Authentication Protocol
2. Early Adopter Program
ECMAEuropean Computer Manufacturing Association
EDIElectronic Data Interchange
EFDEarly Fast Discard
EFSEncrypting File System (Windows 2000)
EGPExterior Gateway Protocol
EHLLAPIExtended HLLAPI
EIGRPEnhanced Interior Gateway Routing Protocol
ELSAElectronic Library Services and Applications
EPN
ERPEnterprise Resource Planning
EXJuniper
EXEExecutable File
FATFile Allocation Table
FEKFile Encryption Key
FPNWFile and Print Services for NetWare
FQDNFully Qualified Domain Name
FIBForward Information Base
FTPFile Transfer Protocol
GCGlobal Catalog
GDBGNU Debugger
GINAGraphical Identification and Authentication
GITGlobal Interface Table
GPEGroup Policy Editor
GPLGeneral Public License
GPOGroup Policy Object
GREGeneric Routing Encapsulation
GSNWGateway Services for NetWare
GSSCGlobal Solutions Support Center
GTMGo to Market
GUIGraphic User Interface
HAHigh Availability
HALHardware Abstraction Layer
HCLHardware Compatibility List
HIPHigh Impact Project
HKCUHKey_Current_User
HKLMHKey_Local_Machine
HLLAPIHigh Level Language Application Programming Interface
HSMHierarchical Storage Management
HTMLHypertext Markup Language
HTTPHypertext Transfer Protocol
IANAInternet Assigned Numbers Authority
IDE1. Integrated Development Environment
2. Integrated Drive Electronics
IDL1. Interface Description Language
2. Interface Definition Language
IDOCIntermediate Document
IEAKInternet Explorer Administrator Kit
IETFInternet Engineering Task Force
IGPInterior Gateway Protocol
IIDInterface Identifier
IISInternet Information Services (Internet Information Server)
IMEInput Method Editor
IMIX
IMSInformation Management System
IOSCisco
IOS XECisco
IOS XRCisco
IOS XRvCisco
IOS XRv 9000Cisco
IP1. Internet Protocol
2. Intellectual Property
IPCInterprocess Communication
IPFIX
IPSecInternet Protocol Security
IPXInternetwork Packet eXchange
IPv4Internet Protocol Version 4
IPv6Internet Protocol Version 6
IrDAInfrared Data Association
ISAMIndexed Sequential Access Method
ISISIntermediate System to Intermediate SystemJuniper
ISOInternational Organization for Standardization
ISVIndependent Software Vendor
ITILInformation Technology Infrastructure Library
ITSIncompatible Time-Sharing System
IXFRIncremental Transfer
IXPInternet Exchange Point
JDBCJava Data Base Connectivity
JITJust-in-Time
JMSJava Message Service
JNDIJava Naming and Directory Interface
JRMIJava Remote Method Invocation
JTACJuniper Technical Assistance CenterJuniper
JTSJava Transaction Service
JUNOSJunos Network Operating SystemJuniper
KCCKnowledge Consistency Checker
KDCKey Distribution Center
KVMKernel-based Virtual Machine
L2TPLayer 2 Tunneling Protocol
L2VPNLayer-2 Virtual Private Network
L3VPNLayer-3 Virtual Private Network
LANLocal Area Network
LCELoosely Coupled Events
LDAPLightweight Directory Access Protocol
LDPLabel Distribution Protocol
LISPList Processor
LORGLarge Organization
LPTSLocal Packet Transport Services
LSALocal Security Authority
LULogical Unit
LXCLinux Containers
MACMedia Access Control
MDACMicrosoft Data Access Components
MFIMultiprotocol Label Switching Forwarding Infrastructure
MGBL
MICRMagnetic Ink Character Recognition
MIMEMultipurpose Internet Mail Extensions
MLVMultilanguage Version
MMCMicrosoft Management Console
MOFManaged Object Format
MOMMicrosoft Operations Manager
MORGMedium-sized Organization
MP-BGPMultiprotocol Extensions for Border Gateway Protocol
MPLSMultiprotocol Label Switching
MQSMessage Queue Series
MROMaintenance Repair and Operations
MSCSMicrosoft Cluster Service
MSDE1. Microsoft Data Engine
2. Microsoft SQL Server 2000 Desktop Engine
MSFMicrosoft Solutions Framework
MSIMicrosoft Windows Installer
MSMQMessage Queuing
MSP1. Managed Service Provider
2. Messaging Service Provider
3. Message Security Protocol
MTAMulti-threaded Architecture
MTS1. Microsoft Transaction Server
2. Microsoft Technical Support
MVSMultiple Virtual System
NALNetWare Applications Launcher
NAVNet Asset Value
NCP1. Network Control Program
2. Network Control Protocol
3. NetWare Core Protocol
NCS
NDISNetwork Driver Interface Specification
NDPSNovell Distributed Print Services
NDSNetWare Directory Service
NFSNetwork File System
NFVNetwork Forward Virtualization
NGFNext Generation Firewall
NIC1. Network Interface Card
2. Network Adapter
3. Network Information Center
NISNetwork Information Service
NLBNetwork Load Balancing
NLSNational Language Support
NNTPNetwork News Transport Protocol
NTLMNT LAN-Manager
NTPNetwork Time Protocol
NTWNew Technology Workstation
NVTNetwork Virtual Terminal
OCROptical Character Recognition
OCX1. OLE Custom Control
2. OLE Control Extension
ODBCOpen Database Connectivity
OLAPOnline Analytical Processing
OLTPOnline Transaction Processing
OMGObject Management Group
OOObject Oriented
OOADObject Oriented Analysis and Design
OPPOrder Processing Pipeline
ORBObject Request Broker
OSOperating System
OSPFOpen Shortest Path First
OSTAOptical Storage Technology Association
OTMObject Transaction Middleware
PACPrivilege Attribute Certificate
PCLPrinter Control Language
PCMCIAPersonal Computer Memory Card International Association
PDCPrimary Domain Controller
PEProvider Edge
PECPrimary Enterprise Controller
PGProduct Group
PIE
PKPrimary Key
PKIPublic Key Infrastructure
PMIProject Management Institute
PnPPlug and Play
POS1. Programmable Option Select
2. Point of Sale
3. Point of Service
4. Packet Over Sonet
5. Persistent Object Server
POSIXPortable Operating System Interface
PPPPoint-to-Point Protocol
PPTPPoint to Point Tunneling Protocol
PSSProduct Support Services
PTMParticipating Transaction Manager
PTRPoint-in-Time Repair
PXEPre-boot Execution Environment
QCEQuality Customer Experience
QEMUQuick Emulator
QFEQuick Fix Engineering
QoSQuality of Service
QvPCQNAP virtualized Personal Computer
OTTOver-The-Top
RADIUSRemote Authentication Dial-In User Service
RAIDRedundant Array of Independent Disks
RASRemote Access Services
RDRoute Distinguisher
RDORemote Data Object
RDP1. Remote Display (or Desktop) Protocol
2. Reliable Datagram Protocol
RDSRemote Data Services
RFCRequest for Comment
RIBRouting Information Base
RID1. Relative Identifier
2. Record ID
RIPRouting Information Protocol
RISRemote Installation Services
RMResource Manager
ROLAPRelational Online Analytical Processing
RPCRemote Procedure Call
RPM
RR1. Resource Records
2. Route Reflector
RSMRemovable Storage Management
RSSRemote Storage
RTRoute Target
RTLRegister Transfer Language
RUPRoaming User Profile
SACLSystem Access-Control List
SAMSecurity Accounts Manager
SANStorage Area Network
SAS1. Secure Attention Sequence
2. Serial Attached SCSI
SCASecurity Configuration and Analysis
SCESecurity Configuration Editor
SCM1. Service Control Manager
2. Security Control Monitor
SCSISmall Computer System Interface
SCTSSecurity Configuration Toolset
SDSecurity Descriptor
SDI1. Secure Dial-In
2. Single Document Interface
3. Smart Database Interface
SDKSoftware Development Kit
SDNSoftware Defined Networking
SFUWindows Services for UNIX
SISystem Integrator
SIDSecurity Identifier
SISSingle Instance Store
SMBServer Message Block
SMSSystems Management Server
SMTPSimple Mail Transfer Protocol
SMU
SNASystems Network Architecture
SNMPSimple Network Management Protocol
SPStored Procedure
SPMShared Property Manager
SRSecure RouterCisco
SRMSecurity Reference Monitor
SRXJuniper
SSDSolid State Disk
SSLSecure Socket Layer
SSOSingle Sign-on
SSPISecurity Support Provider Interface
SVIDSystem V Interface Definition
SAASystem Application Architecture
TACTechnical Assistance CenterCisco
TCETightly Coupled Events System
TCOTotal Cost of Ownership
TCP/IPTransmission Control Protocol/Internet Protocol
TCTTerminal Control Table
TFTPTrivial File Transfer Protocol
TGSTicket-Granting Service
TGT1. Transaction Group Type
2. Ticket Granting Ticket
3. Target Tracker
TIPTransaction Internet Protocol
TLBType Library
TLSThread Local Storage
TMTransaction Manager
TPTransaction Program
TPDTransactions Per Day
TPHTransactions Per Hour
TPMTransactions Per Minute
TPSTransactions Per Second
TSATarget Service Agent
TTLTime to Live
UCS1. User Coordinate System
2. Universal Character Set
3. Unicode Conversion Support
4. Unified Communication Server
UDF1. Universal Disk Format
2. User-defined function
3. Uniqueness Database File
UDPUser Datagram Protocol
UIUser Interface
UML1. Unified Modeling Language
2. Universal Markup Language
UNCUniversal Naming Convention
UPNUser Principal Name
URLUniform Resource Locator
uRPF
USBUniversal Serial Bus
USMTUser State Migration Tool
USNUpdate Sequence Numbers
UTFUnicode Transformation Format
VANValue Added Network
vCenterVMware
vCPEVirtual Customer Premise Equipment
vESACisco
VMVirtual Machine
vNAMCisco
VNF
vPEVirtual Provider Edge
VPNVirtual Private Network
VRFVirtual Private Network Routing and Forwarding Instance
vRRVirtualized Route Reflector
VRRP
vSphereVMware
vSRXJuniper
vWLC
vWSA
vWAAS
VxDVirtual Device Driver
WANWide Area Network
WBEMWeb-based Enterprise Management
WDMWin32 Driver Model
WFPWindows File Protection
WHQLWindows Hardware Quality Lab
WINSWindows Internet Name Service
WMIWindows Management Instrumentation
WQLWMI Query Language
WRED
WSHWindows Script Host
XAExtended Architecture
XDRExternal Data Representation
XMLExtensible Markup Language
XML TIXML Transaction Integration
XSLExtensible Style Language
XSLTExtensible Stylesheet Language Transformations
Yang
ZAWZero Administration for Windows

Sources (amongst each other):