See this document in CiteSeerX!

Kerberos Plus RSA for World Wide Web Security (1995)  (Make Corrections)  (3 citations)
Don Davis



  Home/Search   Context   Related

 
View or download:
usenix.org/publications/libr...davis.ps
berkeley.edu/~daw/press...krb+rsa.ps.gz
Cached:  PS.gz  PS  PDF   Image  Update  Help

From:  usenix.org/publications/l...davis (more)
(Enter author homepages)

Rate this article: (best)
  Comment on this article  
(Enter summary)

Abstract: We show how to use Kerberos to enable its clients to interact securely with non-Kerberized World Wide Web servers. That is, our protocol does not require that the Web server be a member of a Kerberos realm, and also does not rely on time-synchronization between the participants. In our protocol, the Kerberos client uses the Web server's public-key certificate to gain cryptographic credentials that conform to public-key authentication standards, and to SHTTP. The client does not perform any... (Update)

Context of citations to this paper:   More

...no need for crossrealm authentication. There have been numerous recent proposals to incorporate public key cryptography into Kerberos [3] [11] These proposals focus on various aspects of Kerberos, such as security and portability. The centralized KDC remains in all of the...

...to the CPU. It is not sufficient to pass the top level keys inside the application client s executable, as Netscape s Web browser does [14, 5]. Even if the executable is signed, we still have to authenticate the signature s validation key. 3 If the attacker replaces one of the...

Cited by:   More
Access Control Lists for the Self-Certifying Filesystem - Savvides (2002)   (Correct)
Compliance Defects in Public-Key Cryptography - Davis (1996)   (Correct)
Distributed Authentication in Kerberos Using Public Key.. - Sirbu, Chuang (1997)   (Correct)

Active bibliography (related documents):   More   All
0.3:   Evolutionary Algorithms with Local Search for Combinatorial.. - Land (1998)   (Correct)
0.1:   Integrating Smart Cards into Kerberos - Gaskell   (Correct)
0.1:   Authentication and Key Distribution in Computer Networks and.. - Oppliger (1995)   (Correct)

Similar documents based on text:   More   All
0.9:   Different database methods in Heimdal - Westerlund, Danielsson (2000)   (Correct)
0.5:   Dual-workfactor Encrypted Key Exchange: Efficiently.. - Barry Jaspan.. (1996)   (Correct)
0.4:   Limitations of the Kerberos Authentication System - Bellovin, Merritt (1991)   (Correct)

Related documents from co-citation:   More   All
2:   International Telegraph and Telephone Consultative Committee (context) - Telegraph, Committee et al. - 1993
2:   The kerberos network authentication service - Kohl, Neuman - 1993
2:   Kerberos: An authentication service for open network systems - Steiner, Neuman et al. - 1988

BibTeX entry:   (Update)

D. Davis. Kerberos Plus RSA for World Wide Web Security. In Proceedings of the USENIX Workshop on Electronic Commerce, July 1995. http://citeseer.ist.psu.edu/davis95kerberos.html   More

@inproceedings{ davis95kerberos,
    author = "Don Davis",
    title = "{Kerberos} Plus {RSA} for World Wide {Web} Security",
    pages = "185--188",
    year = "1995",
    url = "citeseer.ist.psu.edu/davis95kerberos.html" }
Citations (may not include all citations):
1529   A Method for Obtaining Digital Signatures and Public-Key Cry.. - Rivest, Shamir et al.
317   Kerberos: An Authentication Service for Open Network Systems - Steiner, Neuman et al. - 1988
136   The Kerberos Network Authentication Service - Neuman, Kohl - 1993
111   Official PGP User's Guide (context) - Zimmermann - 1995
61   Kerberos Authentication and Authorization System - Miller, Neuman et al. - 1987
44   Secure Hypertext Transfer Protocol - Rescorla, Schiffman
39   International Telegraph and Telephone Consultative Committee (context) - Telegraph, Committee et al. - 1989
20   Network Security via Private-Key Certificates - Davis, Swick - 1990
15   Public Key Cryptography for Initial Authentication in Kerber.. (context) - Neuman, Tung et al. - 1995
9   Workstation Services and Kerberos Authentication at Project .. (context) - Davis, Swick - 1990
6   personal communication (context) - of, Systems
6   Scaling the Web of Trust: Combining Kerberos and PGP to Prov.. (context) - Schiller, Atkins - 1995
2   Secure Socket Layer Reference Document (context) - Communications
1   anonymous ftp distibution site for Kerberos software [athena.. (context) - Systems
1   Kerberos Security With Clocks Adrift (context) - Davis, Geer - 1995

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC