A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment

Big Island, Hawaii January 03-January 06

RSS feed for this publication

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/HICSS.2005.54

Proceedings of the 38th Annual Hawaii ...

	This Article
	PURCHASE ARTICLE: $0 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Guo Yuan-bo Articles by Ma Jian-feng

	ASCII Text	x
	Guo Yuan-bo, Ma Jian-feng, "A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment," Hawaii International Conference on System Sciences, vol. 9, pp. 310b, Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 9, 2005.

	BibTex	x
	@article{ 10.1109/HICSS.2005.54, author = {Guo Yuan-bo and Ma Jian-feng}, title = {A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment}, journal ={Hawaii International Conference on System Sciences}, volume = {9}, year = {2005}, issn = {1530-1605}, pages = {310b}, doi = {http://doi.ieeecomputersociety.org/10.1109/HICSS.2005.54}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Hawaii International Conference on System Sciences TI - A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment SN - 1530-1605 SP EP A1 - Guo Yuan-bo, A1 - Ma Jian-feng, PY - 2005 KW - null VL - 9 JA - Hawaii International Conference on System Sciences ER -

Guo Yuan-bo, Xidian University, China; Engineering University, China

Ma Jian-feng, Xidian University, China; Engineering University, China

Recently, Hung-Yu Chien has proposed a new approach to authorization and authentication in distributed environments which has some merits, such as one registration for many services, etc. However, this approach requires the registration server to maintain all users' warrants and proxy keys, thus presenting an attractive target to attackers. An intrusion-tolerant improvement of this approach is presented in this paper to eliminate this disadvantage while preserving the merits of the original one. To do this, we introduce the concept of Distributed Registration Center consisting of multiple Registration Severs, and use a cryptographic (k, n) secret sharing scheme to distribute parts of the users' warrants and proxy keys to RSs and use a secure multi-party computation scheme to perform the signatures such that the warrant can be signed in a distributed fashion without reassembly when a legal user registrant himself/herself at the DRC. Analysis shows that under the assumption of a Diffie-Hellman decisional problem, a passive adversary gets zero knowledge about the conference key, and an active adversary cannot impersonate successfully.

Citation:

Guo Yuan-bo, Ma Jian-feng, "A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment," hicss, vol. 9, pp.310b, Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 9, 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.