Authentication

HDDS uses X.509 PKI-DH authentication to verify participant identity.

Overview

Authentication ensures that:

Participants have valid certificates signed by a trusted CA
Participants prove possession of their private key
Unauthorized participants cannot join the domain

Certificate Requirements

Supported Algorithms

Type	Algorithm	Key Size
RSA	PKCS#1 v2.1	2048-8192 bits
ECDSA	P-256 (secp256r1)	256 bits

Certificate Extensions

KeyUsage: Must include digitalSignature
Validity: notBefore/notAfter checked at runtime
Subject: Common Name (CN) used for identification

File Format

All certificates and keys must be PEM encoded:

-----BEGIN CERTIFICATE-----
MIICxjCCAa6gAwIBAgIJALZ...
-----END CERTIFICATE-----

Certificate Generation

Using OpenSSL

Generate CA

# Generate CA private key
openssl genrsa -out ca_key.pem 2048

# Generate CA certificate (self-signed)
openssl req -x509 -new -nodes \
  -key ca_key.pem \
  -sha256 -days 1825 \
  -out ca_cert.pem \
  -subj "/CN=HDDS Root CA/O=MyOrg"

Generate Participant Certificate

# Generate participant private key
openssl genrsa -out participant_key.pem 2048

# Generate certificate signing request
openssl req -new \
  -key participant_key.pem \
  -out participant_csr.pem \
  -subj "/CN=SensorNode1/O=MyOrg"

# Sign with CA
openssl x509 -req \
  -in participant_csr.pem \
  -CA ca_cert.pem \
  -CAkey ca_key.pem \
  -CAcreateserial \
  -out participant_cert.pem \
  -days 365 \
  -sha256

Verify Certificate

# Verify certificate chain
openssl verify -CAfile ca_cert.pem participant_cert.pem
# Expected: participant_cert.pem: OK

# View certificate details
openssl x509 -in participant_cert.pem -text -noout

Using ECDSA (P-256)

# Generate ECDSA CA key
openssl ecparam -genkey -name prime256v1 -out ca_key.pem

# Generate ECDSA participant key
openssl ecparam -genkey -name prime256v1 -out participant_key.pem

Authentication Handshake

The 4-step challenge-response protocol:

Handshake Details

HandshakeRequest: Initiator sends identity certificate and 32-byte random nonce
HandshakeReply: Responder validates certificate, sends own certificate and signed challenge
HandshakeConfirm: Initiator verifies responder, sends signed response
Complete: Both sides derive shared session key via ECDH

Configuration

use hdds::prelude::*;
use hdds::security::SecurityConfig;

let security = SecurityConfig::builder()
    // Required: Identity
    .identity_certificate("certs/participant.pem")
    .private_key("certs/participant_key.pem")

    // Required: Trust anchors
    .ca_certificates("certs/ca.pem")

    // Optional: Require all participants to authenticate
    .require_authentication(true)

    // Optional: Check certificate revocation (CRL/OCSP)
    .check_certificate_revocation(false)

    .build()?;

Certificate Validation

HDDS performs these checks:

Format validation: Valid PEM structure
Chain validation: Traces to trusted CA
Validity period: Current time within notBefore/notAfter
KeyUsage: digitalSignature extension present
Signature verification: CA signature valid

Validation Errors

Error	Cause	Resolution
`CertificateInvalid`	Malformed PEM	Regenerate certificate
`CertificateExpired`	Past notAfter date	Issue new certificate
`ChainValidationFailed`	No path to CA	Check CA in trust store
`SignatureInvalid`	Tampered certificate	Regenerate certificate

Unauthenticated Participants

By default, authenticated participants won't communicate with unauthenticated ones.

To allow mixed environments (not recommended):

let security = SecurityConfig::builder()
    .identity_certificate("cert.pem")
    .private_key("key.pem")
    .ca_certificates("ca.pem")
    .require_authentication(false)  // Allow unauthenticated
    .build()?;

Multi-CA Environments

To trust multiple CAs, concatenate certificates:

cat ca1.pem ca2.pem > trusted_cas.pem

let security = SecurityConfig::builder()
    .ca_certificates("trusted_cas.pem")  // Multiple CAs
    // ...
    .build()?;

Certificate Rotation

To rotate certificates without downtime:

Generate new certificate with overlapping validity
Update application configuration
Restart application
New handshakes use new certificate
Existing sessions continue with old key

Best Practices

Use strong keys: RSA 2048+ or ECDSA P-256
Short validity: 90-365 days for participant certs
Protect private keys: Restrict file permissions (0600)
Separate CA: Dedicated, offline CA machine
Rotate regularly: Automate certificate renewal

Troubleshooting

Authentication Fails

# Enable debug logging
export RUST_LOG=hdds::security=debug

Certificate Not Trusted

# Verify CA is correct
openssl verify -CAfile ca.pem participant.pem

Key Mismatch

# Check key matches certificate
openssl x509 -noout -modulus -in cert.pem | md5sum
openssl rsa -noout -modulus -in key.pem | md5sum
# Hashes must match

Next Steps

Access Control - Fine-grained permissions
Encryption - Data protection

Overview​

Certificate Requirements​

Supported Algorithms​

Certificate Extensions​

File Format​

Certificate Generation​

Using OpenSSL​

Generate CA​

Generate Participant Certificate​

Verify Certificate​

Using ECDSA (P-256)​

Authentication Handshake​

Handshake Details​

Configuration​

Certificate Validation​

Validation Errors​

Unauthenticated Participants​

Multi-CA Environments​

Certificate Rotation​

Best Practices​

Troubleshooting​

Authentication Fails​

Certificate Not Trusted​

Key Mismatch​

Next Steps​