A browser-based Kerberos authentication scheme

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 5283 LNCS, Issue , 2008, Pages 115-129

  Gajek, Sebastian ^a   Jager, Tibor ^a   Manulis, Mark ^b   Schwenk, Jörg ^a  

^a RUHR UNIVERSITY BOCHUM   (Germany)

^b B 1348   (Belgium)

Author keywords

[No Author keywords available]

Indexed keywords

AUTHENTICATION; SECURITY SYSTEMS;

CLIENT APPLICATIONS; FORMAL MODEL; KERBEROS; KERBEROS AUTHENTICATION; KERBEROS PROTOCOL; MUTUAL AUTHENTICATION; SECURITY TOKENS; TRUSTED THIRD PARTIES;

INTERNET PROTOCOLS;

EID: 57049132145     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-88313-5_8     Document Type: Conference Paper

References (24)

1. Kerberos: The network authentication protocol. http://web.mit.edu/ Kerberos/
2. Allen, C., Dierks, T.: The TLS protocol -version 1.1. Internet proposed standard RFC 4346 (2006)
3. Backes, M., Cervesato, I., Jaggard, A.D., Scedrov, A., Tsay, J.-K.: Oryptographically sound security proofs for basic and public-key kerberos (2006)
4. Bellare, M., Namprempre, C.: Authenticated encryption: Relations among notions and analysis of the generic composition paradigm. In: Okamoto, T. (ed.) ASI-ACRYPT 2000. LNCS, vol. 1976, pp. 531-545. Springer, Heidelberg (2000)
5. Bellare, M., Rogaway, P.: Random Oracles are Practical: A Paradigm for Designing Efficient Protocols. In: Conference on Computer and Communications Security, pp. 62-73. ACM Press, New York (1993)
6. Boldyreva, A., Kumar. V.: Provable-security analysis of authenticated encryption in kerberos (2007)
7. Canetti, R.: Universally composable security: A new paradigm for cryptographic protocols. In: FOCS. pp. 136-145. IEEE Computer Society. Los Alamitos (2001)
8. Dhamija, R., Tygar, J.D., Hearst, M.A.: Why phishing works. In: CHl, pp. 581-590. ACM Press, New York (2006)
9. Gajek, S., Manulis, M., Pereira, O., Sadeghi, A.-R., Schwenk, J.: Universally composable security analysis of tls - secure sessions with handshake and record layer protocols. Cryptology ePrint Archive, Report 2008/251 (2008)
10. Gajek, S., Manulis, M., Sadeghi, A.-R., Schwenk, J.: Provably secure browser-based user-aware mutual authentication over tls. In: ASIACCS, pp. 300-311. ACM Press, New York (2008)
11. Gajek, S., Schwenk, J., Xuan, C.: On the insecurity of microsoft's identity metasystem cardspace (HGI TR-2008-004) (2008)
12. Groß, T.: Security analysis of the SAML single sign-on browser/artifact profile. In: Annual Computer Security Applications Conference. IEEE Computer Society, Los Alamitos (2003)
13. Groß, T., Pfitzmann, B.: Sami artifact information flow revisited. Research Report RZ 3643 (99653), IBM Research (2006)
14. Jonsson, J.: Security proofs for the RSA-PSS signature scheme and its variants. Cryptology ePrint Archive. Report 2001/053 (2001)
15. Karlof, C., Shankar, U., Tygar, J.D., Wagner, D.: Dynamic pharming attacks and locked same-origin policies for web browsers. In: CCS 2007, pp. 58-71. ACM, New York (2007)
16. Kirda, E., Krügel, C., Vigna, G., Jovanovic, N.: Noxes: a client-side solution for mitigating cross-site scripting attacks, pp. 330-337 (2006)
17. Kormann, D., Rubin, A.: Risks of the Passport single sign-on protocol. Computer Networks 33(1-6), 51-58 (2000)
18. Krawczyk, H.: The order of encryption and authentication for protecting communications (or: How secure is SSL?). In: Kilian, J. (ed.) CRYPTO 2001. LNCS, vol. 2139, pp. 310-331. Springer, Heidelberg (2001)
19. Pfitzmann, B., Waidner, M.: A model for asynchronous reactive systems and its application to secure message transmission. In: IEEE Symposium on Security and Privacy, pp. 184-200 (2001)
20. Pfitzmann, B., Waidner, M.: Analysis of liberty single-signon with enabled clients. IEEE Internet Computing 7(6), 38-44 (2003)
21. Shoup, V.: OAEP reconsidered, J. Cryptology 15(4), 223-249 (2002)
22. Stamm, S., Ramzan, Z., Jakobsson, M.: Drive-by pharming, pp. 495-506 (2007)
23. Stuart Schechter, A.O., Dhamija, R., Fischer, I.: The emperor's new security indicators. In: Symposium on Security and Privacy. IEEE Computer Society, Los Alamitos (2007)
24. W3C. Document object model (DOM) (2005), http://www.w3.org/D0M