Signed Unique References- A BAKO Extension Proposal-
|
Abstract:
In 1996, at the JENC Conference 7 in Budapest, GMD introduced a new simple user oriented security protocol for business transactions over the Internet [1]. A first implementation was demonstrated there, the BAKO-2 prototype. In the meantime, BAKO has been developed to an easy-to-use plug-in running on Microsoft Windows with the popular Netscape Navigator and Microsoft Internet Explorer. To broaden the scope of BAKO applications, some changes are needed in the way information is enhanced and transported: instead of sending large packets of data multiple times, we propose to generate and sign references to objects. We call them Signed Unique References (SURE). The danger of replay attacks is dealt with in the SURE approach, too. We propose a specification for Signed Unique References and how to integrate them into the existing BAKO software. The recommended hash and timestamp algorithms are compared to alternative solutions in a `state of the art ' report. Finally, we show how BAKO with SURE extensions can be used in the pilots of the
