Title :
CODEX: a robust and secure secret distribution system
Author :
Marsh, Michael A. ; Schneider, Fred B.
Author_Institution :
Inst. for Adv. Comput. Studies, Maryland Univ., College Park, MD, USA
Abstract :
CODEX (COrnell Data Exchange) stores secrets for subsequent access by authorized clients. It also is a vehicle for exploring the generality of a relatively new approach to building distributed services that are both fault-tolerant and attack-tolerant. Elements of that approach include: embracing the asynchronous (rather than synchronous) model of computation, use of Byzantine quorum systems for storing state, and employing proactive secret sharing with threshold cryptography for implementing confidentiality and authentication of service responses. Besides explaining the CODEX protocols, experiments to measure their performance are discussed.
Keywords :
authorisation; client-server systems; cryptography; electronic data interchange; fault tolerant computing; message authentication; protocols; Byzantine quorum systems; CODEX; COrnell Data Exchange; access controls; attack-tolerance; client/server systems; distributed services; fault-tolerance; information storage; multitier systems; proactive secret sharing; secret distribution system; threshold cryptography; Access protocols; Authentication; Computational modeling; Computer crime; Cryptographic protocols; Cryptography; Delay; Fault tolerance; Robustness; Vehicles; 65; Index Terms- Distributed systems; access controls; client/server and multitier systems; fault tolerance; information storage.;
Journal_Title :
Dependable and Secure Computing, IEEE Transactions on
DOI :
10.1109/TDSC.2004.3
