Title :
411 on scalable password service
Author :
Sacerdoti, Federico D. ; Katz, Mason J. ; Papadopoulos, Phillip M.
Author_Institution :
San Diego Supercomput. Center, CA, USA
Abstract :
In this paper we present 411, a password distribution system for high performance environments that provides security and scalability. We show that existing solutions such as NIS and Kerberos do not provide sufficient performance in large, tightly coupled systems such as computational clusters. Unlike existing single-signon services, the 411 design removes the need for communication during password lookup by using aggressive replication techniques. We demonstrate the use of shared keys to efficiently protect user information, and the careful management of system wide consistency and fault tolerance. A theoretical analysis of the behavior of 411 is matched with quantitative evidence of its performance and suitability to a clustered environment. We further show the system effectively responds to stress by simulating 50% message loss on a 60-node cluster. This protocol is currently used worldwide in hundreds of Rocks-based production systems to provide password and login information service.
Keywords :
cryptography; data privacy; message authentication; workstation clusters; 411 design; Kerberos; NIS; Rocks-based production systems; clustered environment; fault tolerance; key sharing; login information service; password distribution system; password lookup; replication techniques; scalable password service; security; single-signon services; system consistency; user information protection; Communication system security; Computer crime; Cryptography; Fault tolerant systems; Information security; Protection; Protocols; Scalability; Storms; Supercomputers;
Conference_Titel :
High Performance Distributed Computing, 2005. HPDC-14. Proceedings. 14th IEEE International Symposium on
Print_ISBN :
0-7803-9037-7
DOI :
10.1109/HPDC.2005.1520963
