Title :
Layering central authentication on existing distributed system terminal services
Author_Institution :
Lawrence Livermore Nat. Lab., CA, USA
Abstract :
An approach to the secure logon problem in distributed systems managed by a single authority is considered in which central authentication is layered onto existing terminal services. This approach suggests itself when a large installed base of computer systems that do not support central authentication already exists. Work to assess the feasibility of this approach was carried out. The results demonstrate that layering can be used in certain circumstances to provide central authentication services, although, as a result, the concomitant maintenance costs may increase. It was also determined that terminal service features are necessary so that central authentication is easily layered over existing terminal services. Recommendations are made concerning how to structure terminal services in a distributed system to support an integrated central authentication service
Keywords :
distributed processing; security of data; supervisory programs; central authentication; distributed system terminal services; layering; secure logon problem; Authentication; Computer architecture; Costs; Data security; Laboratories; National security; Operating systems; Protocols; Software maintenance; Software systems;
Conference_Titel :
Security and Privacy, 1989. Proceedings., 1989 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-1939-2
DOI :
10.1109/SECPRI.1989.36303
