Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

2008 7th IEEE International Conference on Cybernetic Intelligent Systems, CIS 2008

Volumn , Issue , 2008, Pages

  Kirsal, Y ^a   Gemikonakli, O ^a  

^a NONE

Author keywords

CASPER; Kerberos; Key Renewal; Network Security; Timed Authentication Protocols

Indexed keywords

CASPER; INSECURE NETWORKS; KERBEROS; KEY RENEWAL; NETWORK AUTHENTICATIONS; SESSION KEYS; TIMED-AUTHENTICATION PROTOCOLS;

AUTHENTICATION; INTELLIGENT CONTROL; INTELLIGENT SYSTEMS; INTERNET;

NETWORK SECURITY;

EID: 64949183947     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/UKRICIS.2008.4798930     Document Type: Conference Paper

References (17)

1. M. Abadi and R. Needham, "Prudent Engineering for Cryptographic Protocols." IEEE Transactions on Software Engineering, vol. 22(1): pp. 6-15, 1996.
2. S. M. Bellovin, and M. Merritt, "Limitations of the Kerberos Authentication System". USENIX winter 1991, pp.253-268. 1991.
3. A. H. Eneh., O. Gemikonakli and R. Comley, "Security of Electronic Commerce Authentication Protocols in Economically Deprived Communities", The Fifth Security Conference 2006, Las Vegas, Nevada, April 2006, ISBN: 0-9772107-2-3.
4. A. Harbitter and D. A. Menascé, "A Methodology for Analyzing the Performance of Authentication Protocols". ACM Transactions on Information and System Security, vol. 5(4): pp. 458-491, 2002.
5. C. A. Hoare, "Communication Sequence Process". Prentice- Hall, International Englewood Cliffs. New Jersey. 1985.
6. Y. Kirsal, A. Eneh and O. Gemikonakli, "A Solution to the Problem of Trusted Third Party for IEEE 802.11b Networks", PGNET2005, Liverpool UK, pp.333-339, 2005.
7. Y. Kirsal and O. Gemikonakli, "An Authentication Protocol to Address the Problem of the Trusted 3rd Party Authentication Protocols", CISSE 2006, 2006.
8. Y. Kirsal and O. Gemikonakli, "Frequent Key Renewal under Pseudo- Secure Conditions for Increased Security in Kerberos Authentication and Its Impact On System Performability", 3rd International Conference on Global E-Security, University of East London (UeL), Docklands, UK, 2007.
9. Y.Kirsal and O.Gemikonakli, "Further Improvements to the Kerberos Timed Autentication Protocol", CISSE 2007, 2007.
10. G. Lowe, "An Attack on the Needham-Schroeder Public-key Authentication Protocol." Information Processing Letters. vol: 56(3), pp. 131-133, 1995.
11. th IEEE Computer Security Workshops, pp. 162 - 170, 1996.
12. th Computer Security Foundation Workshop. pp.18-30., 1998
13. A. Mishra and W. A. Arbaugh, "An Initial Security Analysis of the IEEE 802.1X Standard", White paper, UMIACS-TR-2002-10, February 2002.
14. M. R. Needham and M.D. Schroeder, "Using Encryption for Authentication in Large Networks of Computers." Communication ACM (21) pp.993-999, 1978.
15. A. W. Roscoe "CSP and Determinism in Security Modelling". IEEE Symposium on Security and Privacy. pp. 115-127, 1995.
16. S. Schneider. "Verifying authentication protocols with CSP" 10th Computer Security Foundations Workshop, IEEE. pp. 741-758, 1997.
17. "Security White Paper Evolution, Requirements, and Options" Available: http://wifiplanet.com/tutorials/articles.php/965471 [Accessed: 27 April 2005] [Last Accessed: 13 September 2007].