Toward acceptable metrics of authentication

Oakland, CA May 04-May 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601308

1997 IEEE Symposium on Security and P ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by M.K. Reiter Articles by S.G. Stubblebine

	ASCII Text	x
	M.K. Reiter, S.G. Stubblebine, "Toward acceptable metrics of authentication," Security and Privacy, IEEE Symposium on, pp. 0010, 1997 IEEE Symposium on Security and Privacy, 1997.

	BibTex	x
	@article{ 10.1109/SECPRI.1997.601308, author = {M.K. Reiter and S.G. Stubblebine}, title = {Toward acceptable metrics of authentication}, journal ={Security and Privacy, IEEE Symposium on}, volume = {0}, year = {1997}, issn = {1540-7993}, pages = {0010}, doi = {http://doi.ieeecomputersociety.org/10.1109/SECPRI.1997.601308}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Security and Privacy, IEEE Symposium on TI - Toward acceptable metrics of authentication SN - 1540-7993 SP EP A1 - M.K. Reiter, A1 - S.G. Stubblebine, PY - 1997 KW - message authentication; authentication metrics design; acceptability; trusted intermediaries; large-scale system; multiple paths; intersecting paths; ambiguities; certificates; key interdependencies; confidence VL - 0 JA - Security and Privacy, IEEE Symposium on ER -

M.K. Reiter, Res. Labs., AT&T Bell Labs., Murray Hill, NJ, USA

S.G. Stubblebine, Res. Labs., AT&T Bell Labs., Murray Hill, NJ, USA

Abstract: Authentication using a path of trusted intermediaries, each able to authenticate the next one in the path, is a well-known technique for authenticating entities in a large-scale system. Recent work has extended this technique to include multiple paths in an effort to bolster authentication, but the success of this approach may be unclear in the face of intersecting paths, ambiguities in the meaning of certificates, and interdependencies in the use of different keys. Several authors have thus proposed metrics to evaluate the confidence afforded by a set of paths. In this paper, we develop a set of guiding principles for the design of such metrics. We motivate our principles by showing how previous approaches fail with respect to them and what the consequences to authentication might be. We then propose a direction for constructing metrics that come closer to meeting our principles and thus, we believe, to being satisfactory metrics for authentication.

Index Terms:

message authentication; authentication metrics design; acceptability; trusted intermediaries; large-scale system; multiple paths; intersecting paths; ambiguities; certificates; key interdependencies; confidence

Citation:

M.K. Reiter, S.G. Stubblebine, "Toward acceptable metrics of authentication," sp, pp.0010, 1997 IEEE Symposium on Security and Privacy, 1997

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.