论文信息 - Kerberos authentication and authorization system

Kerberos authentication and authorization system

This document describes the assumptions, short and long term goals, and system model for a network authentication system, named Kerberos, for the Athena environment. An appendix specifies the detailed design and protocols to support these goals, and a set of 1 UNIX manual pages, not included here, describes an implementation for Berkeley 4.3 UNIX of both user interface commands and also library interfaces for clients and servers. The next section of the technical plan, E.2.2, describes a set of network applications that use Kerberos for authentication.

[1] S. Kent. ENCRYPTION-BASED PROTECTION PROTOCOLS FOR INTERACTIVE USER-COMPUTER COMMUNICATION , 1976 .

[2] Roger M. Needham,et al. Using encryption for authentication in large networks of computers , 1978, CACM.

[3] A. J. Herbert. The Cambridge Distributed Computing System , 1983, Advanced Course: Local Area Networks.

[4] Roger M. Needham,et al. Grapevine: an exercise in distributed computing , 1982, CACM.

[5] R. Jueneman,et al. Message authentication , 1985, IEEE Communications Magazine.

[6] Thomas A. Berson,et al. A key distribution protocol using event markers , 1983, TOCS.

[7] Stephen T. Kent,et al. Security Mechanisms in High-Level Network Protocols , 1983, CSUR.

[8] Giovanni Maria Sacco,et al. Timestamps in key distribution protocols , 1981, CACM.

[9] Gerald J. Popek,et al. Encryption and Secure Computer Networks , 1979, CSUR.

[10] David K. Gifford. Cryptographic sealing for information secrecy and authentication , 1982, CACM.

[11] Andrew Birrell. Secure communication using remote procedure calls , 1985, TOCS.