论文信息 - Authentication in the Taos operating system

Authentication in the Taos operating system

We describe a design for security in a distributed system and its implementation. In our design, applications gain access to security services through a narrow interface. This interface provides a notion of identity that includes simple principals, groups, roles, and delegations. A new operating system component manages principals, credentials, and secure channels. It checks credentials according to the formal rules of a logic of authentication. Our implementation is efficient enough to support a substantial user community.

[1] Morrie Gasser,et al. The Digital Distributed System Security Architecture , 1989 .

[2] Mark Shand,et al. Fast implementations of RSA cryptography , 1993, Proceedings of IEEE 11th Symposium on Computer Arithmetic.

[3] Martín Abadi,et al. Authentication and Delegation with Smart-cards , 1991, TACS.

[4] Adi Shamir,et al. A method for obtaining digital signatures and public-key cryptosystems , 1978, CACM.

[5] Ralph Howard,et al. Data encryption standard , 1987 .

[6] Garret Swart,et al. The Echo Distributed File System , 1996 .

[7] Jean-Jacques Quisquater,et al. Bournas corsair: a chip card with fast rsa capability , 1991 .

[8] B. Clifford Neuman,et al. Kerberos: An Authentication Service for Open Network Systems , 1988, USENIX Winter.

[9] Roger M. Needham,et al. Cryptography and secure channels , 1993 .

[10] Martín Abadi,et al. A Calculus for Access Control in Distributed Systems , 1991, CRYPTO.

[11] Ronald L. Rivest,et al. The MD4 Message-Digest Algorithm , 1990, RFC.

[12] Michael Burrows,et al. Performance of Firefly RPC , 1989, SOSP '89.

[13] Lawrence C. Stewart,et al. Firefly: a multiprocessor workstation , 1987, IEEE Trans. Computers.

[14] Hans Eberle,et al. A 1 GBIT/second GaAs DES chip , 1992, 1992 Proceedings of the IEEE Custom Integrated Circuits Conference.

[15] B. Lampson,et al. Authentication in distributed systems: theory and practice , 1991, TOCS.