DocumentCode :
3303633
Title :
Public-Key Cryptography Enabled Kerberos Authentication
Author :
Al-Janabi, Sufyan T Faraj ; Rasheed, Mayada Abdul-salam
Author_Institution :
Coll. of Comput., Univ. of Anbar, Ramadi, Iraq
fYear :
2011
fDate :
6-8 Dec. 2011
Firstpage :
209
Lastpage :
214
Abstract :
Kerberos is a trusted third party authentication protocol based on symmetric key cryptography. This paper studies how Kerberos authentication standard can be extended to support public key cryptography. The paper aims to do this by implementing the most important public-key cryptography extension specifications to the traditional Kerberos standard which incorporate public-key infrastructure (PKI) into the scope of underlying systems trusted by Kerberos. Thus, qualitative experimental measurements can be performed to study and compare various extensions. Although public key crypto-system requires calculations that are computationally expensive, it is well believed that they can eliminate some of Kerberos protocol limitations. The public-key based protocols PKINIT, PKCROSS, and PKTAPP add public-key cryptography support at different stages of the Kerberos framework. They all attempt to improve Kerberos scalability and security by simplifying key management and utilizing trustworthy public-key infrastructures Together. The PKINIT and PKCROSS specifications define a public key based authentication solution across multi-realm Kerberos networks. PKTAPP makes more fundamental changes to the Kerberos standard in an attempt to achieve greater improvements in scalability, security and client privacy issues. Analysis and evaluation have been performed based on our own developed prototype implementations of PKINIT, PKCROSS, and PKTAPP.
Keywords :
cryptographic protocols; data privacy; message authentication; public key cryptography; Kerberos authentication standard; Kerberos scalability; Kerberos security; PKCROSS; PKINIT; PKTAPP; client privacy issues; multirealm Kerberos networks; public key cryptography; public-key infrastructure; symmetric key cryptography; trusted third party authentication protocol; Authentication; Prototypes; Public key cryptography; Servers; Kerberos; PKCROSS; PKINIT; PKTAPP; authentication; public-key cryptography;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Developments in E-systems Engineering (DeSE), 2011
Conference_Location :
Dubai
Print_ISBN :
978-1-4577-2186-1
Type :
conf
DOI :
10.1109/DeSE.2011.16
Filename :
6149941
Link To Document :
بازگشت