论文信息 - An approach to key management and inter-domain authentication in the telecommunications management network

An approach to key management and inter-domain authentication in the telecommunications management network

In this paper a key management approach and a method for secure and authentic inter-domain communications are presented within the context of the telecommunications management network (TMN). The TMN components are divided into domains and public keys of components are distributed on a per-domain basis. The approach has the advantage of reducing the number of keys that need to be delivered whenever old keys expire and new ones are generated. In addition, the division into domains allows the effects due to attacks to the components in a domain to be contained within that domain. Interdomain communications is established by applying a 2-Phase Certification Server as a bridge of authority between two communicating components in differing domains. The solution has the advantage of allowing each domain authority to maintain control over its domain by rejecting foreign messages of suspicions origin. Although presented in the context of the TMN, the approach is general enough to be applicable to other forms of networks.<<ETX>>

Thomas Hardjono | Tadashi Ohta | T. Chikaraishi

[1] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[2] Martín Abadi,et al. Authentication in distributed systems: theory and practice , 1991, SOSP '91.

[3] Morrie Gasser,et al. An architecture for practical delegation in a distributed system , 1990, Proceedings. 1990 IEEE Computer Society Symposium on Research in Security and Privacy.

[4] Whitfield Diffie,et al. New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.

[5] John Rushby. A Trusted Computing Base for Embedded Systems , 1984 .

[6] T. Elgamal. A public key cryptosystem and a signature scheme based on discrete logarithms , 1984, CRYPTO 1984.

[7] Stephen T. Kent,et al. Security Mechanisms in High-Level Network Protocols , 1983, CSUR.

[8] Ralph Howard,et al. Data encryption standard , 1987 .

[9] Jennifer Seberry,et al. Practical Approaches to Attaining Security Against Adaptively Chosen Ciphertext Attacks (Extended Abstract) , 1992, CRYPTO.

[10] Roger M. Needham,et al. Using encryption for authentication in large networks of computers , 1978, CACM.