By Topic

A Study on the Secure and Intrusion-Tolerant Authorization and Authentication System Applied to the Distributed Environment

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)

Recently, Hung-Yu Chien has proposed a new approach to authorization and authentication in distributed environments which has some merits, such as one registration for many services, etc. However, this approach requires the registration server to maintain all users' warrants and proxy keys, thus presenting an attractive target to attackers. An intrusion-tolerant improvement of this approach is presented in this paper to eliminate this disadvantage while preserving the merits of the original one. To do this, we introduce the concept of Distributed Registration Center consisting of multiple Registration Severs, and use a cryptographic (k, n) secret sharing scheme to distribute parts of the users' warrants and proxy keys to RSs and use a secure multi-party computation scheme to perform the signatures such that the warrant can be signed in a distributed fashion without reassembly when a legal user registrant himself/herself at the DRC. Analysis shows that under the assumption of a Diffie-Hellman decisional problem, a passive adversary gets zero knowledge about the conference key, and an active adversary cannot impersonate successfully.

Published in:

System Sciences, 2005. HICSS '05. Proceedings of the 38th Annual Hawaii International Conference on

Date of Conference:

03-06 Jan. 2005