“Typhon: Um Serviço de Autenticação e Autorização Tolerante a Intrusões”
From Navigators
(Difference between revisions)
(NavsPubsFull5.xml import (201201141459, full reimport with new ids for legacy pubs avoiding collisions)) |
|||
Line 1: | Line 1: | ||
{{Publication | {{Publication | ||
- | |title= | + | |type=inproceedings |
- | + | |title=Typhon: Um Serviço de Autenticação e Autorização Tolerante a Intrusões | |
- | + | |author=João Sousa, Alysson Bessani, Paulo Sousa | |
- | + | |Project=Project:REGENESYS | |
- | + | |ResearchLine=Fault and Intrusion Tolerance in Open Distributed Systems (FIT) | |
- | + | |month=sep | |
- | + | |year=2010 | |
- | + | |abstract=The Kerberos v5 standard specifies how the clients and services of a distributed system may mutually authenticate through the use of a centralized authentication service. If this service fails, by crash or in an arbitrary way (e.g., software bug, hardware problem, intrusion), the clients and services that depend on it are not able to authenticate between themselves. This paper presents an authentication and authorization service that complies with RFC 4120, and that uses Byzantine-fault-tolerant state machine replication and secure components to make the service more resilient. These secure components guarantee that clients' and services' secret keys are kept private even in the presence of intrusions. The evaluation results show that the proposed service has similar latency and throughput values to the ones of a well known Kerberos implementation. | |
- | |author= | + | |booktitle=2th Simpósio de Informática (INFORUM) |
- | + | |url=http://www.navigators.di.fc.ul.pt/archive/papers/typhon-pt.pdf | |
- | | | + | |
- | + | ||
- | |abstract= | + | |
- | + | ||
- | + | ||
- | + | ||
- | |booktitle= | + | |
- | + | ||
- | | | + | |
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
- | + | ||
}} | }} |
Latest revision as of 18:13, 17 July 2014
João Sousa, Alysson Bessani, Paulo Sousa
in 2th Simpósio de Informática (INFORUM), Sept. 2010.
Abstract: The Kerberos v5 standard specifies how the clients and services of a distributed system may mutually authenticate through the use of a centralized authentication service. If this service fails, by crash or in an arbitrary way (e.g., software bug, hardware problem, intrusion), the clients and services that depend on it are not able to authenticate between themselves. This paper presents an authentication and authorization service that complies with RFC 4120, and that uses Byzantine-fault-tolerant state machine replication and secure components to make the service more resilient. These secure components guarantee that clients' and services' secret keys are kept private even in the presence of intrusions. The evaluation results show that the proposed service has similar latency and throughput values to the ones of a well known Kerberos implementation.
Download paper
Download Typhon: Um Serviço de Autenticação e Autorização Tolerante a Intrusões
Export citation
Project(s): Project:REGENESYS
Research line(s): Fault and Intrusion Tolerance in Open Distributed Systems (FIT)