Jeff Schiller and Derek Atkins. Scaling the Web of Trust: Combining Kerberos and PGP to Provide Large Scale Authentication. In Usenix Winter Conference Proceedings, January 1995.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....ticket to the client. The client password is used as encryption key. This ticket al..so contains a session key which to be used as a private key for further transactions. 7.2.3 Combining PGP and Kerberos There are problems associated with both security mechanisms. Thus a new protocol was mooted. SA95, pp. 83 93] The new architecture envisages combining Kerberos and PGP. Here there is a PGP signer service. Any client would have to first authenticate itself with the PGP signer service. This authentication is done using Kerberos. 7.3 Alternate Solutions 7.3.1 SRA Authentication mechanism s ....

Jeffrey Schiller and Derek Atkins. Scaling the web of trust: Combining Kerberos and PGP to provide large scale authentication. In USENIX Technical Conference-New Orleans,LA, pages 83--93, Massachusets Institute of Technology., January 1995.

....is beyond the scope of this paper, but it s clear that unauthenticated issuance offers no security guarantees. It is possible to use a symmetric key security system to authenticate a public key certification request. MIT has added a PGP signing service to the Kerberos authentication system. [18] In this scheme, the authenticity of the certificate s name to key binding is as sound as the Kerberos account s creation was. If the user accounts administrator checked IDs in faceto face meetings, the Kerberized CA s certificates will be meaningful. If instead the users can register themselves ....

J.I. Schiller and D. Atkins, "Scaling the Web of Trust: Combining Kerberos and PGP to Provide Large Scale Authentication," USENIX Winter Conference Proceedings, January 1995.

....interests. One could depend on schemes such as paths or webs of trust [3] to establish trust as it is needed. Unfortunately, as the path of trust establishment lengthens, the overall path suffers from trust dilution; solving this problem often requires interactions with many remote sites [15]. Rather than require that clients trust WayStations before using them, we argue instead for deferring the need for trust. We propose to do so through Stonewall, a system that renders breaches of confidentiality impossible, and ensures that breaches of integrity or non repudiation are detectable. ....

J. I. Schiller and D. Atkins. Scaling the web of trust: combining Kerberos and PGP to provide large scale authentication. In Proceedings USENIX Winter 1995 Technical Conference, pages 93--94, New Orleans, LA, USA, January 1995.

....the differences. Our protocol combines Kerberos performance advantages with public key s terrific geographic reach. Other mergers between Kerberos and RSA have been proposed. MIT s Schiller and Atkins have built a Kerberized service that certifies PGP public keys [15] for Project Athena s users [12]. Neuman et al. have preliminarily proposed in an Internet Draft that Kerberos can help its clients manage their RSA keys [9] Finally, the present paper s protocol is derived from a protocol that we presented in [3] 2 Problem Statement We assume that each Web user will share a password with at ....

J.I. Schiller, D. Atkins, "Scaling the Web of Trust: Combining Kerberos and PGP to Provide Large Scale Authentication," USENIX Winter Conference Proceedings, January 1995.

....the fact that Kerberos is based on secret key cryptography, and that the AS must be trusted by all principals. Work is currently going on at the MIT, to extend Kerberos for authentication over secondary networks (Atkins, 1993) and to use Kerberos to set up a PGP server in a corporate environment (Schiller and Atkins, 1995). Recently, a variant of Kerberos V5 was proposed as Yaksha (Ganesan, 1995) Yaksha uses as its building block a generalization of the RSA cryptosystem. The user s private key is split into two parts; one part is becoming the user s password, and the other part the AS password for that particular ....

Schiller, J.I., and Atkins, D. (1995) Scaling the Web of Trust: Combining Kerberos and PGP to Provide Large Scale Authentication. In Proceedings of the Technical Conference on UNIX and Advanced Computing Systems, 83-94.

No context found.

Jeff Schiller and Derek Atkins. Scaling the Web of Trust: Combining Kerberos and PGP to Provide Large Scale Authentication. In Usenix Winter Conference Proceedings, January 1995.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC