10 citations found. Retrieving documents...
O. Kornievskaia, P. Honeyman, B. Doster, and K. Co#man. Kerberized credential translation: A solution to web access control. In 10th USENIX Security Symposium, pages 235--250, 2001.

 Home/Search   Document Details and Download   Summary   Related Articles   Check  

This paper is cited in the following contexts:
Best Practices for Secure Development - Peteanu (2001)   (Correct)

....that will not be built simply to serve one particular application when the rest of the systems use different mechanisms. Rather, the decision to implement Kerberos goes across multiple systems. If a Kerberos infrastructure already exists, applications could be re designed to make use of it. See [Coffman2001] for a possible approach. 5.6.2 SAML In the list of major security services, Kerberos misses one: authorization. This is not a shortcoming, it is simply the case that the protocol has not been designed for authorization. Today s distributed environment have brought the necessity for having ....

Olga Kornievskaia, Peter Honeyman, Bill Doster, Kevin Coffman, Kerberized Credential Translation: A Solution to Web Access Control, http://www.securityfocus.com/data/library/citi-tr-01-5.pdf

A General and Flexible Access-Control System for the Web - Bauer, Schneider, Felten (2002)   (8 citations)  (Correct)

....access) are separated into two distinct processes. More modern methods of controlling access to web pages separate these functions even further, not as an optimization, but as a basic element of their design. Increasingly in use are systems in which a certificate, such as a Kerberos ticket [15, 17] or an X.509 certificate [14] is obtained by a user through out of band means; a web browser and a web server are augmented so that the web browser can pass the certificate to the web server and the web server can use the certificate to authorize the user to access a certain page. The advantage ....

O. Kornievskaia, P. Honeyman, B. Doster, and K. Co#man. Kerberized credential translation: A solution to web access control. In Proceedings of the 10th USENIX Security Symposium, Washington, DC, Aug. 2001.

A Practical Distributed Authorization System - For Gara William (2002)   Self-citation (Kornievskaia)   (Correct)

No context found.

O. Kornievskaia, P. Honeyman, B. Doster, and K. Co man. Kerberized credential translation: A solution to web access control. In Proceedings of the 10th USENIX Security Symposium, August 2001.

A Practical Distributed Authorization System for GARA - Adamson, Kornievskaia (2001)   (1 citation)  Self-citation (Kornievskaia)   (Correct)

....Globus PK credentials into Kerberos credentials or Andrew File System (AFS) tokens at the service, PK user credentials are still required at the client. The University of Michigan has developed a service that allows users to access Grid resources based on their Kerberos credentials. The KX509 [9, 15] system translates Kerberos V4 or V5 credentials into short lived PK credentials, or junk keys, which in turn can be used by browsers for mutual SSL authentication or by GSI for Globus authentication. KX509 creates a new public private keypair, and sends the public key to a Kerberized Certificate ....

....Mutual SSL authentication is required by the Web server, so the junk keys obtained in step 2 are used. The reservation request parameters are sent to the Web server in the RSL form. 4. The Web server kct module makes a Kerberos authenticated request to the Kerberized Credential Translator (KCT) [15] to acquire a service ticket for the KCA service on the user s behalf. 5. The Web server kx509 module acquires junk keys on behalf of the user, as in Step 2. This set of user junk keys are stored on the Web server. The Web server globus proxy init module then uses the newly created junk keys to ....

[Article contains additional citation context not shown here]

O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman. Kerberized credential translation: A solution to web access control. In Proceedings of the 10th USENIX Security Symposium, pages 235--249, August 2001.

Reducing the Dependence of SPKI/SDSI on PKI Hao Wang - Somesh Jha Thomas   (Correct)

No context found.

O. Kornievskaia, P. Honeyman, B. Doster, and K. Co#man. Kerberized credential translation: A solution to web access control. In 10th USENIX Security Symposium, pages 235--250, 2001.

Reducing the Dependence of Trust-Management Systems on PKI - Hao Wang Somesh   (Correct)

No context found.

Olga Kornievskaia, Peter Honeyman, Bill Doster, and Kevin Coffman. Kerberized credential translation: A solution to web access control. In 10th USENIX Security Symposium, pages 235--250, 2001.

Securing Information Gateways with - Derivation-Constrained Access.. (2006)   (Correct)

No context found.

Kornievskaia, O., Honeyman, P., Doster, B., Coffman, K.: Kerberized Credential Translation: A Solution to Web Access Control. In: Proceedings of 10th Usenix Security Symposium. (2001)

Access Control for the Web via Proof-Carrying Authorization - Bauer (2003)   (3 citations)  (Correct)

No context found.

O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman. Kerberized credential translation: A solution to web access control. In Proceedings of the 10th USENIX Security Symposium, Washington, DC, Aug. 2001. 2

A Hardware-secured Credential Repository for Grid PKIs - Lorch, Basney, Kafura (2004)   (2 citations)  (Correct)

No context found.

O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman, "Kerberized Credential Translation: A Solution to Web Access Control", USENIX Security Symposium, 2001.

Security Infrastructure for A Web Service Based - Resource Management System (2002)   (Correct)

No context found.

O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman, "Kerberized Credential Translation: A Solution to Web Access Control," Proceedings of the 10th USENIX Security Symposium, August 2001.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC