Madefast: collaborative engineering over the Internet
Communications of the ACM
Providing secure mobile access to information servers with temporary certificates
Computer Networks: The International Journal of Computer and Telecommunications Networking
An Intranet Security Framework Based on Short-Lived Certificates
IEEE Internet Computing
Kerberized credential translation: a solution to web access control
SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Certificate-based access control for widely distributed resources
SSYM'99 Proceedings of the 8th conference on USENIX Security Symposium - Volume 8
Hi-index | 0.00 |
We propose an authentication and access delegation system based on an unconventional use of X.509 certificates. It allows users to connect from any untrusted machine and to define dynamically a group of trusted co-workers. It is low cost, doesn't need unusual software nor hardware on the client's side, and offers a good degree of security without requiring that the user be too careful. The underlying idea is to enable users to release their own certificates with very short life span (or usable just once) to authenticate themselves to the server.