Security mechanism independence in ONC RPC
暂无分享,去创建一个
Generic Security Services API (GSS-API) [4] provides a framework for security services. It allows source level portability. It allows applications to run independently of the underlying security mechanisms and technologies.
To provide security mechanism independence in ONC RPC [1, 2, 3], this paper proposes a new security flavor, RPCSEC_GSS. RPCSEC_GSS incorporates services offered by the GSS-API into ONC RPC. Using the programming interface for the RPCSEC_GSS flavor, ONC RPC applications can specify a GSS-API security mechanism to be used with an RPC session, and also request security services, such as integrity and privacy.
[1] Theodore Y. Ts'o,et al. Kerberos: an authentication service for computer networks , 1994, IEEE Communications Magazine.
[2] Barry Jaspan. GSS-API security for ONC RPC , 1995, Proceedings of the Symposium on Network and Distributed System Security.
[3] John T. Kohl,et al. The Kerberos Network Authentication Service (V5 , 2004 .
[4] John Wray. Generic Security Service API : C-bindings , 1993, RFC.