Title :
Ticket-based secure delegation service supporting multiple domain models
Author :
Chang, Kyung-Ah ; Lee, Tae-Seung ; Chun, Bang-Hun ; Kim, Tai-Yun
Abstract :
We propose a ticket-based delegation service for multiple domain models. This scheme presents an extension to the Kerberos (J.T. Kohl et al., 1991) framework using public key cryptosystem (T. ElGamal, 1985). This proposed model, based on CORBAsec (A. Alireza et al., 2000; B. Blakey, 2000), supports the protection of the high-level resources and the preservation of the security policies of the underlying resources that form the foundation of various domains, between the Kerberized domains and the nonKerberized domains. Also we achieved the flexibility of key management and reliable session key generation between the client and the provider using the public key cryptosystem based ticket
Keywords :
distributed object management; network operating systems; public key cryptography; CORBAsec; Kerberized domains; Kerberos framework; high-level resource protection; key management; multiple domain models; nonKerberized domains; public key cryptosystem; public key cryptosystem based ticket; reliable session key generation; security policies; ticket-based secure delegation service; Computer science; Design engineering; Distributed computing; Physics computing; Protection; Public key; Public key cryptography; Scalability; Security; Web and internet services;
Conference_Titel :
Dependable Computing, 2001. Proceedings. 2001 Pacific Rim International Symposium on
Conference_Location :
Seoul
Print_ISBN :
0-7695-1414-6
DOI :
10.1109/PRDC.2001.992710
