REX: Secure, extensible remote execution

Proceedings of the FREENIX Track: 2004 USENIX Annual Technical Conference

Volumn , Issue , 2004, Pages

  Kaminsky, Michael ^a   Peterson, Eric ^a   Giffin, Daniel B ^a   Fu, Kevin ^a   Mazières, David ^a   Kaashoek, M Frans ^a  

^a NEW YORK UNIVERSITY   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

NETWORK ARCHITECTURE;

DELEGATION MECHANISMS; EXISTING SYSTEMS; MEASUREMENTS OF; NETWORK COMPLEXITY; NOVEL ARCHITECTURE; REMOTE EXECUTION; REMOTE MACHINES; TCP CONNECTIONS;

INTERNET PROTOCOLS;

EID: 31844453927     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (39)

1. Joseph Bester, Ian Foster, Carl Kesselman, Jean Tedesco, and Steven Tuecke. GASS: A data movement and access service for wide area computing systems. In Proceedings of the Sixth Workshop on Input/Output in Parallel and Distributed Systems, pages 78–88, Atlanta, GA, May 1999.
2. Andrew D. Birrell, Andy Hisgen, Chuck Jerian, Timothy Mann, and Garret Swart. The Echo distributed file system. Technical Report 111, Digital Systems Research Center, Palo Alto, CA, September 1993.
3. R. Butler, D. Engert, I. Foster, C. Kesselman, S. Tuecke, J. Volmer, and V. Welch. A national-scale authentication infrastructure. IEEE Computer, 33(12):60–66, 2000.
4. Russ Cox, Eric Grosse, Rob Pike, Dave Presotto, and Sean Quinlan. Security in Plan 9. In Proceedings of the 11th USENIX Security Symposium, San Francisco, CA, August 2002.
5. K. Czajkowski, I. Foster, N. Karonis, C. Kesselman, S. Martin, W. Smith, and S. Tuecke. A resource management architecture for metacomputing systems. In Proceedings of the IPPS/SPDP ’98 Workshop on Job Scheduling Strategies for Parallel Processing, pages 62–82, 1998.
6. T. Dierks and C. Allen. The TLS Protocol, Version 1.0. RFC 2246, Network Working Group, January 1999.
7. FIPS 180-1. Secure Hash Standard. U.S. Department of Commerce/N.I.S.T., National Technical Information Service, Springfield, VA, April 1995.
8. I. Foster and C. Kesselman. Globus: A metacomputing infrastructure toolkit. Intl J. Supercomputer Applications, 11(2):115–128, 1997.
9. I. Foster, C. Kesselman, G. Tsudik, and S. Tuecke. A security architecture for computational grids. In Proceedings of the 5th ACM Conference on Computer and Communications Security Conference, pages 83–92, San Francisco, CA, November 1998.
10. fsh — Fast remote command execution. http://www.lysator.liu.se/fsh/.
11. glogin. http://www.gup.uni-linz.ac.at/glogin/.
12. A. Gulbrandsen, P. Vixie, and L. Esibov. A DNS RR for specifying the location of services (DNS SRV). RFC 2782, Network Working Group, February 2000.
13. John H. Howard, Michael L. Kazar, Sherri G. Menees, David A. Nichols, M. Satyanarayanan, Robert N. Sidebotham, and Michael J. West. Scale and performance in a distributed file system. ACM Transactions on Computer Systems, 6(1):51–81, February 1988.
14. Kalle Kaukonen and Rodney Thayer. A stream cipher encryption algorithm “arcfour”. Internet draft (draft-kaukonen-cipherarcfour-03.txt), Network Working Group, July 1999. Work in progress.
15. S. Kent and R. Atkinson. Security architecture for the internet protocol. RFC 2401, Network Working Group, November 1998.
16. Gene Kim, Hilarie Orman, and Sean O’Malley. Implementing a secure rlogin environment: A case study of using a secure network layer protocol. In Proceedings of the 5th USENIX Security Symposium, pages 65–74, Salt Lake City, UT, June 1995.
17. Hugo Krawczyk, Mihir Bellare, and Ran Canetti. HMAC: Keyed-hashing for message authentication. RFC 2104, Network Working Group, February 1997.
18. Butler Lampson, Martín Abadi, Michael Burrows, and Edward P. Wobber. Authentication in distributed systems: Theory and practice. ACM Transactions on Computer Systems, 10(4):265–310, 1992.
19. David Mazières. A toolkit for user-level file systems. In Proceedings of the 2001 USENIX, pages 261–274. USENIX, June 2001.
20. David Mazières, Michael Kaminsky, M. Frans Kaashoek, and Emmett Witchel. Separating key management from file system security. In Proceedings of the 17th ACM Symposium on Operating Systems Principles, pages 124–139, Kiawa Island, SC, 1999.
21. OpenSSH. http://www.openssh.com/.
22. Rob Pike, Dave Presotto, Ken Thompson, Howard Trickey, and Phil Winterbottom. The use of name spaces in plan 9. ACM SIGOPS Operating System Review, 27(2):72–76, Apr 1993.
23. Dave Presotto and Dennis Ritchie. Interprocess communication in the eighth edition UNIX system. In Proceedings of the 1985 Summer USENIX Conference, Portland, OR, 1985.
24. Niels Provos, Markus Friedl, and Peter Honeyman. Preventing Privilege Escalation. In Proceedings of the 12th USENIX Security Symposium, Washington, DC, August 2003.
25. Y. Rekhter, B. Moskowitz, D. Karrenberg, G. J. de Groot, and E. Lear. Address allocation for private internets. RFC 1918, Network Working Group, February 1996.
26. Jerome Saltzer. Protection and control of information in multics. Communications of the ACM, 17(7):388–402, July 1974.
27. Q. Snell, A. Mikler, and J. Gustafson. Netpipe: A network protocol independent performace evaluator. In Proceedings of the IASTED International Conference on Intelligent Information Management and Systems, June 1996.
28. Alex C. Snoeren. A Session-Based Architecture for Internet Mobility. PhD thesis, Massachusetts Institute of Technology, December 2002.
29. R. Srinivasan. XDR: External data representation standard. RFC 1832, Network Working Group, August 1995.
30. J. G. Steiner, B. C. Neuman, and J. I. Schiller. Kerberos: An authentication service for open network systems. In Proceedings of the Winter 1988 USENIX, pages 191–202, Dallas, TX, February 1988. USENIX.
31. David Vincenzetti, Stefano Taino, and Fabio Bolognesi. Stel: Secure telnet. In Proceedings of the 5th USENIX Security Symposium, pages 75–84, Salt Lake City, UT, June 1995.
32. V. Welch, I. Foster, C. Kesselman, O. Mulmo, S. Tuecke L. Pearl-man, J. Gawor, S. Meder, and F. Siebenlist. X.509 proxy certificates for dynamic delegation. In Proceedings of the 3rd Annual PKI R&D Workshop, April 2004.
33. Hugh C. Williams. A modification of the RSA public-key encryption procedure. IEEE Transactions on Information Theory, IT-26(6):726–729, November 1980.
34. Edward P. Wobber, Martín Abadi, Michael Burrows, and Butler Lampson. Authentication in the Taos operating system. ACM Transactions on Computer Systems, 12(1):3–32, 1994.
35. Thomas Wu. The secure remote password protocol. In Proceedings of the 1998 Internet Society Network and Distributed System Security Symposium, pages 97–111, San Diego, CA, March 1998.
36. X.509. Recommendation X.509: The Directory Authentication Framework. ITU-T (formerly CCITT) Information technology Open Systems Interconnection, December 1988.
37. T. Ylönen and D. Moffat (Ed.). SSH Transport Layer Protocol. Internet draft (draft-ietf-secsh-transport-17.txt), Network Working Group, October 2003. Work in progress.
38. Tatu Ylönen. SSH – secure login connections over the Internet. In Proceedings of the 6th USENIX Security Symposium, pages 37–42, San Jose, CA, July 1996.
39. Victor C. Zandy and Barton P. Miller. Reliable network connections. In Proceedings of the 8th Annual International Conference on Mobile Computing and Networking, pages 95–106, Atlanta, GA, September 2002.