A methodology for analyzing the performance of authentication protocols

Harbitter, Alan; Menascé, Daniel A.

doi:10.1145/581271.581275

Cited by 20 publications

(6 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Harbitter and Menascé [4] have drawn attention to the performance evaluation of the Kerberos Security Protocol in two different achievements.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Kirsal¹,

Gemikonakli²

2008

2008 7th IEEE International Conference on Cybernetic Intelligent Systems

View full text Add to dashboard Cite

Kerberos is a widely used computer network authentication protocol which allows individuals communicating over an insecure network to prove their identity to one another in a secure manner. This paper presents an approach that involves a new authentication protocol that combines delaying the decryption with timed authentication by using passwords and session keys for authentication purposes, and frequent key renewal under secure conditions. The analysis and verification of authentication properties and results of the designed protocol are presented and discussed

show abstract

“…Harbitter and Menascé [4] have drawn attention to the performance evaluation of the Kerberos Security Protocol in two different achievements.…”

Section: Related Workmentioning

confidence: 99%

“…There are efforts to enhance the security capability of the Kerberos authentication mechanism.. These efforts are of two categories; public key assistance and the addition of a proxy server [4].…”

mentioning

confidence: 99%

Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Kirsal¹,

Gemikonakli²

2008

2008 7th IEEE International Conference on Cybernetic Intelligent Systems

View full text Add to dashboard Cite

show abstract

“…This section has the aim to underline the advantages that software engineers can have by using our library as a support for their decisions related to the performance vs security trade-off. From a general viewpoint, our experiment follows standard practices to conduct a performance modelling analysis: construct the model, validate the model, vary modelling parameters, and analyze the results [7].…”

Section: Experimentationmentioning

confidence: 99%

Towards a library of composable models to estimate the performance of security solutions

Cortellessa

Trubiani

2008

Proceedings of the 7th International Workshop on Software and Performance

View full text Add to dashboard Cite

Complex distributed dependable systems, such as web-based applications that contain sensitive data and are exposed to many users, have to meet different, and sometimes conflicting, non functional requirements, such as security and performance requirements. A typical example of this trade-off is the performance degradation introduced in a system by the raising of security solutions. Several proposals have been made to estimate the performance of security methodologies, but they are often grounded to existing standards such as IPsec and SSL. In this paper we tackle the problem from a model-based viewpoint: we introduce basic performance models for security mechanisms, which can be considered as building bricks to compose in order to model security services. To this goal, we introduce rules that drive the composition. Security service models can then be integrated with functional models of critical applications to estimate the performance of the adopted security solutions. We represent models as Generalized Stochastic Petri Nets (GSPNs). This is a first step towards a Security Library containing composable performance models of security mechanisms and services and representing an instrument to support designers in decisions related to the security vs performance trade-off. We show how to use our models on an example of banking system.

show abstract

“…Apostolopoulos et al [28] studied the cost of the TLS protocol. In [29], Harbitter and Menasce propose a methodology for analyzing the performance of authentication protocols, using Kerberos [30] as a case study. Additional work on performance measures of security can be found in [31], [32].…”

Section: Introductionmentioning

confidence: 99%

A Conceptual Model for Analysis and Design of Tunable Security Services

Lindskog

Faigl

Brunström

2008

JNW

View full text Add to dashboard Cite

Security is an increasingly important issue for networked services. However, since networked environments may exhibit varying networking behavior and contain heterogeneous devices with varying resources tunable security services are needed. A tunable security service is a service that provides different security configurations that are selected, and possibly altered, at run-time. In this paper, we propose a conceptual model for analysis and design of tunable security services. The proposed model can be used to describe and compare existing tunable security services and to identify missing requirements. Five previously proposed services are analyzed in detail in the paper. The analysis illustrates the powerfulness of the model, and highlights some key aspects in the design of tunable security services. Based on the conceptual model, we also present a high-level design methodology that can be used to identify the most appropriate security configurations for a particular scenario.

show abstract

A methodology for analyzing the performance of authentication protocols

Cited by 20 publications

References 19 publications

Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Towards a library of composable models to estimate the performance of security solutions

A Conceptual Model for Analysis and Design of Tunable Security Services

Contact Info

Product

Resources

About