Abstract
The MeDoc Project aims at building a digital distributed full text library containing high quality computer science literature. Since the MeDoc library contains electronic editions of classical paper books and journals, accounting and security aspects are of considerable importance in this project.
The basic concepts for the MeDoc service have been identified in a requirements analysis phase. This paper describes the security requirements and their implementation within the MeDoc prototype.
The MeDoc billing facilities imply the implementation of security mechanisms into the MeDoc service. Therefore security tools and implementations of cryptographic algorithms have been evaluated as to their suitability for the MeDoc service. Communication channels are now secured by transparent encryption mechanisms based on SSL. The prototype admits only registered users to the MeDoc library. The users are authenticated via password and can be charged via accounts.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
D. Boles et al.: Conception of the User Agent — the User Interface of the MeDoc System, in this volume.
D. Boles et al.: The MeDoc System — A Digital Publication and Reference Service for Computer Science, in this volume.
M. Breu, A. Brüggemann-Klein, C. Haber, and R. Weber: The MeDoc distributed electronic library — accounting and security aspects. In ICCC/IFIP Conference on Electronic Publishing. University of Kent, Canterbury, April 1997.
M. Breu and R. Weber: Konzeption der Abrechnung in MeDoc (in German). Technischer Bericht, TU München, 1996. http://medoc.informatik.tumuenchen.de/publications/abrech.ps.
A. Brüggemann-Klein: MeDoc Pflichtenheft. Technischer Bericht, TU München, June 1996.
B. Bryant, J. Steiner, and J. Kohl: Kerberos Installation Notes. DRAFT Initial Release plus later patches through patch level 7.
M. Dreger, S. Lohrum, and P. Müller: The MeDoc Communication Protocol, in this volume.
A. O. Freier, P. Karlton, and P. C. Kocher: The SSL Protocol Version 3.0. Internet Draft, March 1996, expired 9/96.
Gmd security technology — secude-5.0. SECUDE Webpage: http://www.darmstadt.gmd.de/secude/secude.html.
K. Großjohann and D. Menke: Query Transformation for Heterogeneous Provider Systems in MeDoc, in this volume.
T. J. Hudson and E. A. Young: SSL Programmer Reference. SSL Programmer Reference.
J Meyer and H.-J. Appelrath: Design and Implementation of the MeDoc Fulltext System, in this volume.
E. Rescorla and A. Schiffmann: The Secure Hypertext Transfer Protocol. Internet Draft expired Jan 96.
W. T. Wong: Secure NCSA httpd Reference Manual. Draft.
P. Zimmermann: Dokumentation zu PGP 2.6.2. The documentation kit for the current MIT release of PGP, Version 2.6.2.
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 1998 Springer-Verlag
About this chapter
Cite this chapter
Brüggemann-Klein, A., Haber, C. (1998). The MeDoc library: Security aspects. In: Barth, A., Breu, M., Endres, A., de Kemp, A. (eds) Digital Libraries in Computer Science: The MeDoc Approach. Lecture Notes in Computer Science, vol 1392. Springer, Berlin, Heidelberg. https://doi.org/10.1007/BFb0052517
Download citation
DOI: https://doi.org/10.1007/BFb0052517
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-64493-4
Online ISBN: 978-3-540-69790-9
eBook Packages: Springer Book Archive