Although Jabber started from the instance messaging protocol, it became one of the most important toolkits for developing distributed applications. The existing Jabber authentication model doesn't support a mechanism to enable a client to access the servers in another domain directly. This limitation causes data duplication and synchronization problems in developing Jabber based distributed applications. Thus the study proposes a novel IDA (Inter-Domain Authentication). While the well-known Kerberos authentication protocol provides IRA (Inter-Realm Authentication), it requires all realms to implement Kerberos authentication mechanisms. Thus this cannot be used for developing Jabber services which contains various authentication mechanisms simultaneously. The study also presents the verification of security completeness with formal method, BAN Logic.
展开▼