Plugging the holes in host-based authentication

Computers and Security

Volumn 15, Issue 8, 1996, Pages 661-671

  Reid, Jim ^a  

^a Reid Tech Facilities Mgmt Ltd   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER NETWORKS; CRYPTOGRAPHY; INTERFACES (COMPUTER); NETWORK PROTOCOLS;

NETWORK AUTHENTICATION;

SECURITY OF DATA;

EID: 0030378565     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/S0167-4048(97)89699-X     Document Type: Article

References (27)

1. D. Dean, E. W. Felten, and D. S. Wallach, "Java Security: From HotWava to Netscape and Beyond," Proc. IEEE Symposium on Security and Privacy, (May 1996).
2. D. Dean and D. S. Wallach, "Security Flaws in the HoWava Web Browser," Tech. Rep.No. 501, University of Princeton (1996).
3. D. K. Hess, D. R. Safford, and U. W. Pooch, A Unix Network Protocol Security Study: Network Information Service, Texas A&M University (1991).
4. J. Reid, "Open Systems Security: Traps and Pitfalls," Proc. Computers and Security, Elsevier, (Sept 1995).
5. P. A. Vixie, "DNS and BIND Security Issues," Proc. Fifth USENIX Unix Security Symposium, (Aug 1996).
6. S. M. Bellovin, "Using the Domain Name System for System Break-ins," Proc. Fifth USENIX Unix Security Symposium, (Aug 1995).
7. C. L. Schuba and E. H. Spafford, "Addressing Weaknesses in the Domain Name System Protocol," Master's Thesis, Purdue University (1993).
8. D. E. Eastlake and C. W. Kaufman, Domain Name System Security Extensions, IETF Work in Progress (1996).
9. R. T. Morris Jr., "A Weakness in the 4.2 BSD UN∼ TCP/IP Software," Comp. Sci. Tech. Rep. No. 117, Bell Laboratories, Murray Hill, New Jersey (Feb 1985).
10. T. Shimomura, Technical details of the attack described by Markoff in NYT, g5gkl$5jl@ariel.sdsc.edu in comp.security.misc,comp.protocols.tcp-ip (25 Jan 1995).
11. anon, CERTAdvisory CA-95.01, Computer Emergency Response Team (Jan 1995).
12. T. Shimomura and J. Markoff, Takedown!, Hyperion (1995).
13. J. Linn, Generic Security Service Application Program Interface, Internet RFC 1508 (Sep 1993).
14. B. A. LaMacchia and A. M. Odlyzko, "Computation of Discrete Logarithms in Prime Fields,"Designs, Codes & Cryptography 1 pp. 46-62 (1991).
15. S. M. Bellovin and M. Merritt, "Limitations of the Kerberos Authentication System," Computer Communications Review, (Oct 1990).
16. anon, CERTAdvisory CA-96.03, Computer Emergency Response Team (Feb 1996).
17. W. Venema, "Murphy's Law and Computer Security," Proc. Sixth USENIX Unix Security Symposium, pp. 187-193 (July 1996).
18. R. J. Anderson, "Vhy Cryptosystems Fail," Comm. ACM 37(11) pp. 32-40 (Nov 1994).
19. R. Atkinson, Security Architecture for the Internet Protocol, Internet RFC 1825 (Aug 1995).
20. R. Atkinson, IPAuthentication Header, Internet RFC 1826 (Aug 1995).
21. R. Atkinson, IP Encapsulating Payload, Internet RFC 1827 (Aug 1995).
22. S. M. Bellovin, "Problem Areas for the IP Security Protocols," Proc. Sixth USENIX Unix Security Symposium, pp. 205-213 (July 1996).
23. T. Ylonen, "SSH - Secure Login Connections over the Internet," Proc. Sixth USENIX Unix Security Symposium, PP. 37-42 (July 1996).
24. J. Linn, Privacy Enhanced Mail, Internet RFC 1421 (Feb 1993).
25. J. Galvin, "Public Key Distribution with Secure DNS," Proc. Sixth UNENIX Unix Security Symposium, pp. 161-170 (July 1996).
26. D. Atkins, M. Graff, A. Lenstra, and P.C. Leyland, "The Magic Words are Squeamish Ossifrage," Proc. ASIACRYPT 94, pp. 263-277 Springer-Verlag, (1995).
27. B. Schneier, Applied Cryptography -Second Edition, Wiley (1996).