A study on Kerberos Authentication and Key Exchange based on PIT


The KIPS Transactions:PartC, Vol. 9, No. 3, pp. 313-322, Jun. 2002
10.3745/KIPSTC.2002.9.3.313,   PDF Download:

Abstract

In this paper, proposes Kerberos certification mechanism that improve certification service of PKINIT base that announce in IETF CAT Working Group. Did to certificate other realm because search position of outside realm through DNS and apply X.509 directory certification system, acquire public key from DNS server by chain (CertPath) between realms by certification and Key exchange way that provide service between realms applying X.509, DS/DNS of PKINIT base. In order to provide regional services, Certification and key exchange between realms use Kerberos'' symmetric method and Session connection used Directory service to connection X.509 is designed using an asymmetric method. Excluded random number (Krand) generation and duplex encryption progress to confirm Client. A Design of Kerberos system that have effect and simplification of certification formality that reduce Overload on communication.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[IEEE Style]
K. C. Shin, I. Y. Chung, J. W. Chung, "A study on Kerberos Authentication and Key Exchange based on PIT," The KIPS Transactions:PartC, vol. 9, no. 3, pp. 313-322, 2002. DOI: 10.3745/KIPSTC.2002.9.3.313.

[ACM Style]
Kwang Cheul Shin, Il Yong Chung, and Jin Wook Chung. 2002. A study on Kerberos Authentication and Key Exchange based on PIT. The KIPS Transactions:PartC, 9, 3, (2002), 313-322. DOI: 10.3745/KIPSTC.2002.9.3.313.