Remote integrity checking: How to trust files stored on untrusted servers

IFIP Advances in Information and Communication Technology

Volumn 140, Issue , 2004, Pages 1-11

  Deswarte, Yves ^a   Quisquater, Jean Jacques ^b   Saïdane, Ayda ^a  

^a LAAS CNRS   (France)

^b UNIVERSITÉ CATHOLIQUE DE LOUVAIN   (Belgium)

Author keywords

[No Author keywords available]

Indexed keywords

INFORMATION SYSTEMS; INTERNET PROTOCOLS; INTRUSION DETECTION; PERSONAL COMPUTING;

CHALLENGE RESPONSE PROTOCOLS; FILE INTEGRITIES; INTEGRITY CHECK; INTEGRITY CHECKING; KEY WORDS; REMOTE SERVERS; UNTRUSTED SERVER;

FINANCE;

EID: 84902475228     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: None     Document Type: Conference Paper

References (10)

1. [CERT 2002] CERT Advisory CA-2002-24, Trojan Horse OpenSSH Distribution, August 1, 2002.
2. [Diffie & Hellman 1976] W. Diffie and M.E. Hellman, "New Directions in Cryptography", IEEE Transactions in Information Theory, 22(1976), pp. 644-654.
3. [Fraser et al. 1999] T. Fraser, L. Badger and M. Feldman, "Hardening COTS Software With Generic Software Wrappers", Proc. of IEEE Symposium on Security and Privacy, 1999, pp. 2-16.
4. Green et al. 1999] John Green, David Marchette, Stephen Northcutt, Bill Ralph, "Analysis Techniques for Detecting Coordinated Attacks and Probes", in Proc. 1st USENIX Workshop on Intrusion Detection and Network Monitoring, Santa Clara, California, USA, April 9-12, 1999, available at:http://www.usenix.org/publications/library/proceedings/detection99/full_papers/green/green_html/
5. Huang et al. 1995] Y. Huang, C. Kintala, N. Kolettis, N.D. Fulton, "Software Rejuvenation: Analysis, Module and Applications", in Proc. 25th IEEE Symposium on Fault Tolerant Computing Conference (FTCS-25), Pasadena, CA, USA, June 1995, pp. 381-390.
6. Jones 1993] M. Jones, "Interposition Agents: Transparently Interposing User Code at the System Interface", Proc. 14th ACM Symp. on Operating Systems Principles, Operating Systems Review, 275, December 1993, pp. 80-93.
7. Kim & Spafford 1993] G.H. Kim and E.H. Spafford, The Design and Implementation of Tripwire: a File System Integrity Checker, Technical Report CSD-TR-93-071, Computer Science Dept, Purdue University, 1993.
8. Lamport 1981] Leslie Lamport, "Password Authentication with Insecure Communication", Comunications of the ACM, 24 (11), pp. 770-772, November 1981.
9. Serafim & Weber 2002] Vinícius da Silveira Serafim and Raul Fernando Weber, The SOFFIC Project, http://www.inf.ufrgs.br/~gseg/projetos/the_soffic_project.pdf.
10. Valdes et al. 2002] A. Valdes, M. Almgren, S. Cheung, Y. Deswarte, B. Dutertre, J. Levy, H. Saïdi, V. Stavridou and T. Uribe, "An Adaptative Intrusion-Tolerant Server Architecture", in Proc. 10th International Workshop on Security Protocols, Cambridge (UK), April 2002, to appear in Springer LNCS Series.