Title :
On inter-realm authentication in large distributed systems
Author :
Gligor, Virgil D. ; Luan, Shyh-Wei ; Pato, Joseph N.
Author_Institution :
Dept. of Electr. Eng., Maryland Univ., College Park, MD, USA
Abstract :
Summary form only given. The authors define formally and rationalize a set of policy rules for the propagation of authentication trust across realm boundaries. The use of these rules helps limit global security exposures that ensue whenever an authentication service is compromised. The authors present the design of a simple, general protocol which satisfies these rules and shares the simplicity and generality goals of the protocol outlined by A. D. Birrell et al. (1986) and of the protocols implemented in Kerberos V (J. Kohl and C. Neuman, 1990) and in SPX (J. J. Tardo and K. Alagappan 1991)
Keywords :
distributed processing; message authentication; protocols; Kerberos V; SPX; authentication trust; global security exposures; inter-realm authentication; large distributed systems; policy rules; protocol; realm boundaries; Access control; Authentication; Control systems; Costs; Distributed computing; Protocols; Public key; Scalability; Security;
Conference_Titel :
Security Technology, 1991. Proceedings. 25th Annual 1991 IEEE International Carnahan Conference on
Conference_Location :
Taipei
Print_ISBN :
0-7803-0120-X
DOI :
10.1109/CCST.1991.202180
