Get 20M+ Full-Text Papers For Less Than $1.50/day. Start a 14-Day Trial for You or Your Team.

Learn More →

A nonce-based protocol for multiple authentications

A nonce-based protocol for multiple authentications The Kerberos authentication service, a part of MIT's Project Athena, is based on the Needham and Schroeder protocol. Timestamps depending on reliable synchronized clocks are used to guarantee the freshness of messages. As an improvement, we present a nonce-based protocol offering the same features as Kerberos. We generate a ticket in an initial message exchange which includes a generalized timestamp. Checking this generalized timestamp is left to the principal who created it. Consequently we do not need synchronized clocks. Our protocol has the property of using a minimal number of messages to establish an authenticated session key. http://www.deepdyve.com/assets/images/DeepDyve-Logo-lg.png ACM SIGOPS Operating Systems Review Association for Computing Machinery

A nonce-based protocol for multiple authentications

Download PDF
6 pages

Loading next page...
 
/lp/association-for-computing-machinery/a-nonce-based-protocol-for-multiple-authentications-Ml3YnyTCz9

References

References for this paper are not available at this time. We will be adding them shortly, thank you for your patience.

Publisher
Association for Computing Machinery
Copyright
Copyright © 1992 by ACM Inc.
ISSN
0163-5980
DOI
10.1145/142854.142872
Publisher site
See Article on Publisher Site

Abstract

The Kerberos authentication service, a part of MIT's Project Athena, is based on the Needham and Schroeder protocol. Timestamps depending on reliable synchronized clocks are used to guarantee the freshness of messages. As an improvement, we present a nonce-based protocol offering the same features as Kerberos. We generate a ticket in an initial message exchange which includes a generalized timestamp. Checking this generalized timestamp is left to the principal who created it. Consequently we do not need synchronized clocks. Our protocol has the property of using a minimal number of messages to establish an authenticated session key.

Journal

ACM SIGOPS Operating Systems ReviewAssociation for Computing Machinery

Published: Oct 1, 1992

There are no references for this article.