Abstract
The development of authentication protocols to secure networks, data and resources is one of the main interests in ensuring secure communication in modern world. Kerberos is a widely used computer network authentication protocol which allows individuals communicating over an insecure network to prove their identity to one another in a secure manner. This paper presents a general approach for the analysis and verification of authentication properties in Kerberos. The work presented is an attempt to combine Kerberos and Key-Exchange Protocol with the aid of the security protocol compiler, CASPER and the Failures-Divergence Refinement (FDR) in order to minimize the success of attacks against protocol's authentication. FDR is used to generate Communicating Sequential Processes (CSP) definition of the protocol. An authentication protocol has been developed to improve secure authentication in Kerberos.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
M. Abadi and R. Needham. “Prudent Engineering for Cryptographic Protocols.” IEEE Transactions on Software Engineering, vol. 22(1): pp. 6-15, 1996
S. M. Bellovin, and M. Merritt. “Limitations of the Kerberos Authentication System”. USENIX winter 1991, pp.253-268. 1991
A. W. Roscoe “CSP and Determinism in Security Modelling”. IEEE Symposium on Security and Privacy. pp. 114-127, 1995
G. Lowe. “CASPER: A Compiler for the Analysis of Security Protocols”. Proceedings of the 10 th Computer Security Foundation Workshop. pp.18-30., 1998
A. Harbitter and D. A. Menascé. “A Methodology for Analyzing the Performance of Authentication Protocols”. ACM Transactions on Information and System Security, vol. 5(4): pp. 458-491, 2002.
C. A. Hoare. “Communication Sequence Process”. Prentice- Hall, International Englewood Cliffs. New Jersey. 1985
G. Lowe. “An Attack on the Needham-Schroeder Public-key Authentication Protocol. ”Information Processing Letters. Vol: 56(3), pp. 131-133, 1995.
A. Mishra and W. A. Arbaugh. “An Initial Security Analysis of the IEEE 802.1X Standard”, White paper, UMIACS-TR-2002-10, February 2002.
M. R. Needham and M.D. Schroeder. “Using Encryption for Authentication in Large Networks of Computers.” Communication ACM (21) pp.993–999, 1978
Y. Kirsal, A. Eneh and O. Gemikonakli, “A Solution to the Problem of Trusted Third Party for IEEE 802.11b Networks”. PGNET2005, Liverpool UK, pp.333-339, 2005
S. Schneider. “Verifying authentication protocols with CSP” 10th Computer Security Foundations Workshop, IEEE. pp.741-758, 1997
[12] “Security White Paper Evolution, Requirements, and Options” Available: http://wifiplanet.com/tutorials/articles.php/965471 [Accessed: 27 April 2005]
A. H. Eneh., O. Gemikonakli and R. Comley. “Security of Electronic Commerce Authentication Protocols in Economically Deprived Communities”, The Fifth Security Conference 2006, Las Vegas, Nevada, April 2006, ISBN: 0-9772107-2-3.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2007 Springer
About this paper
Cite this paper
Kirsal, Y., Gemikonakli, O. (2007). An Authentication Protocol to Address the Problem of the Trusted 3rd Party Authentication Protocols. In: Sobh, T., Elleithy, K., Mahmood, A., Karim, M. (eds) Innovative Algorithms and Techniques in Automation, Industrial Electronics and Telecommunications. Springer, Dordrecht. https://doi.org/10.1007/978-1-4020-6266-7_95
Download citation
DOI: https://doi.org/10.1007/978-1-4020-6266-7_95
Publisher Name: Springer, Dordrecht
Print ISBN: 978-1-4020-6265-0
Online ISBN: 978-1-4020-6266-7
eBook Packages: EngineeringEngineering (R0)