A Browser-Based Kerberos Authentication Scheme

机译：基于浏览器的Kerberos身份验证方案

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

When two players wish to share a security token (e.g., for the purpose of authentication and accounting), they call a trusted third party. This idea is the essence of Kerberos protocols, which are widely deployed in a large scale of computer networks. Browser-based Kerberos protocols are the derivates with the exception that the Kerberos client application is a commodity Web browser. Whereas the native Kerberos protocol has been repeatedly peer-reviewed without finding flaws, the history of browser-based Kerberos protocols is tarnished with negative results due to the fact that subtleties of browsers have been disregarded. We propose a browser-based Kerberos protocol based on client certificates and prove its security in the extended formal model for browser-based mutual authentication introduced at ACM ASIACCS'08.

机译：当两个玩家希望共享安全令牌时（例如，出于身份验证和计费的目的），他们将呼叫受信任的第三方。这个想法是Kerberos协议的本质，Kerberos协议已广泛部署在大型计算机网络中。基于浏览器的Kerberos协议是派生产品，但Kerberos客户端应用程序是商用Web浏览器。尽管已经反复对本机Kerberos协议进行了同行评审而没有发现缺陷，但是由于忽略了浏览器的精巧性，基于浏览器的Kerberos协议的历史受到了负面的影响。我们提出了一种基于客户端证书的基于浏览器的Kerberos协议，并在ACM ASIACCS'08上针对基于浏览器的相互认证的扩展正式模型中证明了其安全性。

著录项

来源
《Computer security-ESORICS 2008》|2008年|115-129|共15页
会议地点 Malaga(ES);Malaga(ES)
作者
Sebastian Gajek; Tibor Jager; Mark Manulis; Joerg Schwenk;
展开▼
作者单位

Horst Goertz Institute for IT-Security Ruhr-University Bochum, Germany;

Horst Goertz Institute for IT-Security Ruhr-University Bochum, Germany;

UCL Crypto Group Louvain-la-Neuve, Belgium;

Horst Goertz Institute for IT-Security Ruhr-University Bochum, Germany;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类安全保密;
关键词

相似文献

外文文献
中文文献
专利

1. Trust based authentication scheme (tbas) for cloud computing environment with Kerberos protocol using distributed controller and prevention attack [J] . M.B. Benjula Anbu Malar, Prabhu J. International journal of pervasive computing and communications . 2021,第1期

机译：基于信任的身份验证方案（TBA），用于使用分布式控制器和预防攻击的Kerberos协议的云计算环境
2. A Tpa-Authentication Scheme for Public Cloud Using Kerberos Protocol [J] . ARPIT AGRAWAL, SHUBHANGI VERMA Oriental Journal of Computer Science and Technology . 2017,第2期

机译：使用Kerberos协议的公共云的Tpa身份验证方案
3. A Tpa-Authentication Scheme for Public Cloud Using Kerberos Protocol [J] . Arpit Agrawal, Shubhangi Verma Oriental journal of computer science and technology . 2017,第2期

机译：使用Kerberos协议的公共云的Tpa身份验证方案
4. A Browser-Based Kerberos AuthenticationScheme [C] . Sebastian Gajek, Tibor Jager, Mark Manulis, European Symposium on Research in Computer Security . 2008

机译：基于浏览器的Kerberos身份认证化学
5. Hardening Kerberos Authentication Using Honeywords [D] . Arora, Saman. 2020

机译：使用蜂窝硬化Kerberos身份验证
6. An Analytic Model for Reducing Authentication Signaling Traffic in an End-to-End Authentication Scheme [O] . Shadi Nashwan, Imad I. H. Nashwan 2021

机译：用于在端到端认证方案中减少认证信令流量的分析模型
7. Biometric-Kerberos Authentication Scheme for Secure Mobile Computing Services [O] . Fengling Han, Mohammed Alkhathami, Ron Van Schyndel 2015

机译：用于安全移动计算服务的生物识别Kerberos认证方案

A Browser-Based Kerberos Authentication Scheme

摘要

著录项

相似文献

相关主题

期刊订阅