Title :
Hierarchical Byzantine Fault Tolerant Secure LDAP
Author :
Hou, Honglun ; Wang, Xiuqun ; Wu, Minghui
Author_Institution :
Zhejiang Univ., Zhejiang
Abstract :
The current security mechanism of LDAP system is authenticating and authorizing. It can tolerate attacks occurred on client and the Internet, and benign faults on servers such as crashes. But it can not tolerate Byzantine(malicious) faults on server and software errors. In this paper, a secure hierarchical Byzantine fault tolerant LDAP system is proposed. By using the state-machine replication approach and quorum system technique, the proposed system can tolerate not only benign faults but also Byzantine faults. The proposed system is a hierarchical LDAP. In this system, an optimized key management to reduce the number of messages communication greatly and a secure caching mechanism are designed, and the deal to read-only request is optimized also. With these optimizations, the system can not only provide a much higher degree of security and reliability but also be practical.
Keywords :
Internet; access protocols; authorisation; cache storage; client-server systems; computer network reliability; cryptographic protocols; fault tolerant computing; message authentication; optimisation; telecommunication security; Internet attacks; authentication; authorization; client-server system; cryptography; hierarchical Byzantine fault tolerant secure LDAP system; lightweight directory access protocol; optimizations; optimized key management; quorum system technique; secure caching mechanism; state-machine replication approach; Communication system security; Computer crashes; Computer science; Data security; Design optimization; Distributed databases; Fault tolerance; Fault tolerant systems; Internet; Web server;
Conference_Titel :
Systems, Man and Cybernetics, 2006. SMC '06. IEEE International Conference on
Conference_Location :
Taipei
Print_ISBN :
1-4244-0099-6
Electronic_ISBN :
1-4244-0100-3
DOI :
10.1109/ICSMC.2006.384730
