P. Nikander and Arto Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proceedings of 7th USENIX UNIX Security Symposium, pages 107--121. USENIX Association, January 1998. San Antonio, Texas.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....Certification Engine The goal of the Certi cation Engine is to evaluate the correctness of the certi cates that a subject may present to substantiate his ability to play a certain role. We assume that this service can be realized by the integration into our architecture of existing solutions [21] to the management of certi cates, some of which are currently available under the Java 2 platform. Such components support the integration of our service into a public key infrastructure [20] realize sophisticated protocols for the exchange of a set of messages, and manage challenge response ....

P. Nikander and A. Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proc. of the 7th Usenix Security Symposium, San Antonio,

....Certification Engine The goal of the Certification Engine is to evaluate the correctness of the certificates that a subject may present to substantiate his ability to play a certain role. We assume that this service can be realized by the integration into our architecture of existing solutions [18] to the management of certificates, some of which are currently available under the Java platform. Such components support the integration of our service into a public key infrastructure [17] realize sophisticated protocols for the exchange of a set of messages, and manage challenge response ....

P. Nikander and A. Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proc. of the 7th Usenix Security Symposium, San Antonio, Texas, January 1998. http://www.tml.hut.fi/Research/TeSSA/Papers/Nikander-Karila/nikander-karila98. html.

....SecComm offers more flexible options for using redundancy techniques to enhance the survivability of such services. Configurable secure communication services have been implemented using various configuration frameworks, including the x kernel [20] Ensemble [22] and the framework described in [19]. All these models are similar in the sense that a communication subsystem is constructed as a directed graph of protocol objects. Although this allows arbitrary combinations of security components, the structure is limiting compared to Cactus and would make it difficult to implement some of our ....

P. Nikander and A. Karila. A Java Beans component architecture for cryptographic protocols. In Proceedings of the 7th USENIX Security Symposium, San Antonio, TX, Jan 1998.

....5.1.3 Certification Engine The goal of the Certi cation Engine is to evaluate the correctness of the certi cates that a subject may presentto substantiate his ability to play a certain role. We assume that this service can be realized bytheintegration into our architecture of existing solutions [17] to the managementof certi cates, some of which are currently available under the Java 2 platform. Such components support the integration of our service into a public key infrastructure [16] realize sophisticated protocols for the exchange of a set of messages, and manage challenge response ....

P.Nikander and A. Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proc. of the 7th Usenix Security Symposium, San Antonio, Texas, January 1998. http://www.tml.hut./Research/TeSSA/Papers/NikanderKarila /nikander-karila-98.html.

....representation and interpretation are defined. A DCCM policy focuses on the mechanisms implementing group security services; authorization and access control is defined independently of the derived group policy. Mechanism composition has long been used as a building block for distributed systems [25, 26, 2, 3, 11, 24]. Composition based frameworks specify the compile or runtime organization of sets of protocols and services used to implement a communication service. The resulting software addresses the requirements of each session. However, the definition and synchronization of specifications is largely ....

P. Nikander and Arto Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proceedings of 7th USENIX UNIX Security Symposium, pages 107--121. USENIX Association, January 1998. San Antonio, Texas.

....expands on this work by defining an approach in which policy is used to provision and regulate the services supporting communication, and to check the compliance of the group definition with local requirements. Mechanism composition has long been used as a building block for distributed systems [28, 30, 2, 3, 11, 27]. Composition based frameworks specify the compile or run time organization of sets of protocols and services used to implement a communication service. The resulting software addresses the requirements of each session. However, the definition and synchronization of specifications is largely ....

P. Nikander and Arto Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proceedings of 7th USENIX UNIX Security Symposium, pages 107--121. USENIX Association, January 1998. San Antonio, Texas.

....mechanism. This indirect approach to communication promotes the independence of micro protocols, yet is flexible enough that even complex 1 interactions are possible. While other researchers have also proposed systems that allow for modular composition of security properties [OOSS94, RBH 98, NK98] none of these approaches has the advantages of fine grain composability and non hierarchical composition available in SecComm. In short, our work pushes the envelope on configurability and flexibility much further than any other work in this area. This paper has several goals. The first is to ....

....frameworks and customizability in secure communication standards. A number of configuration frameworks have been used to construct modular or configurable secure communication services including the x kernel [OOSS94] Ensemble [RBH 98] and a Java implementation of the conduit model [NK98] Each of these models allows a communication subsystem to be constructed as a stack or directed graph of protocol objects, which allows different security protocols be configured in arbitrary ways with respect to one another and other communication protocols. The x kernel framework was used to ....

[Article contains additional citation context not shown here]

P. Nikander and A. Karila. A Java Beans component architecture for cryptographic protocols. In Proceedings of the 7th USENIX Security Symposium, San Antonio, TX, Jan 1998. 17

....one to optionally demand the resolver to only return data that came directly from an authoritative source. If expired certi cates are received, the query should be remade using this option. For uniformity with the existing system of TeSSA, the resolver was written in Java. The JaCoB framework [19] was utilised in implementing the protocol, as has been done with other protocol components used in TeSSA. The resolver needs to be hooked into a UDP protocol component before it can communicate with name servers. We have two interchangeable components suitable for the task, one of which has been ....

Pekka Nikander and Arto Karila. A Java Beans component architecture for cryptographic protocols. In Proceedings of the 7th USENIX Security Symposium, San Antonio, Texas, January 1998. Usenix Association.

....for authorization decisions have been described. The SPKI document [15] states that its authors believe that the authorization problem can be answered but no implementation exists for the time being. Some discussion on the implementation techniques but no complete algorithms can be found in [22, 19]. In this section, we will describe several algorithms for the authorization decisions. The algorithms are designed to handle threshold certi cates. Normal joint delegation certi cates are special cases where the threshold value equals the number of subjects. Two things are worth noting about our ....

Pekka Nikander. A Java Beans component architecture for cryptographic protocols. In Proc.7TH USENIX Security Symposium, San Antonio, Texas, January 1997. To appear.

No context found.

P. Nikander and Arto Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proceedings of 7th USENIX UNIX Security Symposium, pages 107--121. USENIX Association, January 1998. San Antonio, Texas.

No context found.

P. Nikander and Arto Karila. A Java Beans Component Architecture for Cryptographic Protocols. In Proceedings of 7th USENIX UNIX Security Symposium, pages 107--121. USENIX Association, January 1998. San Antonio, Texas.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC