A. Aziz, T. Markson, H. Prafullchandra, Assigned numbers for SKIP protocols, available on-line at http://skip.incog.com/spec/numbers.html .  Home/Search   Document Not in Database   Summary   Related Articles   Check

....public key . The SKIP header has provisions to carry an NSID MKID pair for each communication endpoint. When the source (or destination) NSID is zero, the MKID is assumed to be the IP source (or destination) For details on how other NSID values are interpreted, interested readers are referred to [5]. 4.1 Access Control Mechanism SKIP utilizes a flexible access control mechanism. A SKIP firewall is configured with an Access Control List (ACL) that determines which other hosts are allowed to communicate with it and how. There are four kinds of access control entries host specific, network ....

A. Aziz, T. Markson, H. Prafullchandra, Assigned numbers for SKIP protocols, available on-line at http://skip.incog.com/spec/numbers.html .

....The server s authentication certificate may include the optional DH parameters, g and p, and Y , where Y = g y mod p. If the DH parameters are not included in the certificate, then default values for g and p are used. Currently, we are using the same default values as those used in SKIP[AMP]. The server s nonce, snonce, and the client s nonce, cnonce, are also included in the message. The Client receives this message and verifies the signatures on the authentication and authorization certificates, that the hash in the servers authentication certificate matches the message hash, and ....

Ashar Aziz, Tom Markson, and Hemma Prafullchandra. Assigned Numbers for SKIP Protocols. http://skip.incog.com/spec/numbers.html.

....not be validated. There are three reasons why the integrity of a component could become invalid. The first is the integrity of the component could change because of some hardware or software malfunction, or it could change because of some malicious act. Finally, the component s certificate timestamp may no longer be valid. In each case, the client MUST attempt to recover from a trusted repository. Should a trusted repository be unavailable after several attempts, then the client s further action depends on the integrity policy of the user. For instance, a user may choose to continue ....

....The AEGIS network recovery protocol combines protocols and algorithms from networking and cryptography to ensure the security of the protocol. This section first provides an introduction to the material needed to fully understand the recovery protocol. We then describe the protocol and provide examples of its use. 3.1 Certificates The usual purpose of a certificate with respect to public key cryptography is to bind a public key with an identity. While this binding is essential for strong authentication, it severely limits the potential of certificates, e.g. anonymous transactions. The most ....

[Article contains additional citation context not shown here]

Ashar Aziz, Tom Markson, and Hemma Prafullchandra. Assigned Numbers for SKIP Protocols. http://skip.incog.com/spec/numbers.html.

....The responder s authentication certificate may include the optional DH parameters, g and p, and Y , where Y = g y mod p. If the DH parameters are not included in the certificate, then default values for g and p are used. Currently, we are using the same default values as those used in SKIP [26]. The responder s nonce, snonce, and the initiator s nonce, cnonce, are also included in the message. The initiator receives this message and verifies the signatures on the authentication and authorization certificates, that the hash in the responder s authentication certificate matches the ....

Ashar Aziz, Tom Markson, and Hemma Prafullchandra, "Assigned Numbers for SKIP Protocols," http://skip.incog.com/spec/numbers.html.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC