Trust-Rated Authentication for Domain-Structured Distributed Systems

Authors:
Ralph Holz;Heiko Niedermayer;Peter Hauck;Georg Carle
Affiliations:
Wilhelm-Schickard-Institut für Informatik, University of Tübingen, Germany;Wilhelm-Schickard-Institut für Informatik, University of Tübingen, Germany;Wilhelm-Schickard-Institut für Informatik, University of Tübingen, Germany;Wilhelm-Schickard-Institut für Informatik, University of Tübingen, Germany
Venue:
EuroPKI '08 Proceedings of the 5th European PKI workshop on Public Key Infrastructure: Theory and Practice
Year:
2008

Citing 10
Cited 1

The official PGP user's guide

The official PGP user's guide
Prudent Engineering Practice for Cryptographic Protocols

IEEE Transactions on Software Engineering
Towards a completeness result for model checking of security protocols

Journal of Computer Security
The Sybil Attack

IPTPS '01 Revised Papers from the First International Workshop on Peer-to-Peer Systems
Modelling a Public-Key Infrastructure

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
The Resurrecting Duckling: Security Issues for Ad-hoc Wireless Networks

Proceedings of the 7th International Workshop on Security Protocols
A Hierarchy of Authentication Specifications

CSFW '97 Proceedings of the 10th IEEE workshop on Computer Security Foundations
Protocols for Key Establishment and Authentication

Protocols for Key Establishment and Authentication
On the Utility of Distributed Cryptography in P2P and MANETs: The Case of Membership Control

ICNP '03 Proceedings of the 11th IEEE International Conference on Network Protocols
Admission control in Peer-to-Peer: design and performance evaluation

Proceedings of the 1st ACM workshop on Security of ad hoc and sensor networks

On using home networks and cloud computing for a future internet of things

FIS'2009 Proceedings of the Second Future internet conference on Future internet

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present an authentication scheme and new protocol for domain-based scenarios with inter-domain authentication. Our protocol is primarily intended for domain-structured Peer-to-Peer systems but is applicable for any domain scenario where clients from different domains wish to authenticate to each other. To this end, we make use of Trusted Third Parties in the form of Domain Authentication Servers in each domain. These act on behalf of their clients, resulting in a four-party protocol. If there is a secure channel between the Domain Authentication Servers, our protocol can provide secure authentication. To address the case where domains do not have a secure channel between them, we extend our scheme with the concept of trust-rating. Domain Authentication Servers signal security-relevant information to their clients (pre-existing secure channel or not, trust, ...). The clients evaluate this information to decide if it fits the security requirements of their application.