论文信息 - An user authentication infrastructure for extranet applications

An user authentication infrastructure for extranet applications

An extranet is used to connect businesses with their suppliers, customers or other businesses that share common goals in a way that automates their administrative interactions using Internet technology. The security of the communications over Internet is considered an essential feature. To guarantee secure operation the aid of some user authentication infrastructure is needed. This paper introduces a public key infrastructure (PKI) and user identification scheme to be used in extranet applications. The flexibility of the system allows it to fit the usual hierarchical organization structure.

Antonio Maña | Juan J. Ortega | Javier Lopez

[1] Donald E. Eastlake. Secure Domain Name System Dynamic Update , 1997, RFC.

[2] Donald E. Eastlake,et al. Domain Name System Security Extensions , 1997, RFC.

[3] Whitfield Diffie,et al. New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.

[4] John T. Kohl,et al. The Kerberos Network Authentication Service (V5 , 2004 .

[5] Steve Kent,et al. Privacy Enhancement for Internet Electronic Mail: Part II: Certificate-Based Key Management , 1989, RFC.

[6] Steven M. Bellovin. Report of the IAB Security Architecture Workshop , 1998 .

[7] Paul V. Mockapetris,et al. DNS encoding of network names and other types , 1989, RFC.

[8] John Linn,et al. Privacy enhancement for Internet electronic mail: Part III - algorithms, modes, and identifiers , 1989, RFC.

[9] Ronald L. Rivest,et al. SDSI - A Simple Distributed Security Infrastructure , 1996 .

[10] John Linn,et al. Privacy Enhancement for Internet Electronic Mail: Part I: Message Encryption and Authentication Procedures , 1987, RFC.

[11] Philip R. Zimmermann,et al. The official PGP user's guide , 1996 .

[12] P ? ? ? ? ? ? ? % ? ? ? ? , 1991 .

[13] Ronald L. Rivest,et al. Can We Eliminate Certificate Revocations Lists? , 1998, Financial Cryptography.