EAP-Kerberos II: An adaptation of Kerberos to EAP for mutual authentication

Eum, Sung-Hyun; Choi, Hyoung-Kee

doi:10.1109/itst.2008.4740231

Cited by 6 publications

(2 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Evaluating existing Kerberos implementations is essential for research, but the development of new Kerberos mechanisms is also equally important. Eum and Choi proposed a new authentication mechanism in Extensible Authentication Protocol (EAP) named EAP-Kerberos II [23]. This protocol mitigated three security concerns of wireless local area networks (WLANs) for an 802.11 network: rogue access points (APs), unprotected messages, and message delay.…”

Section: Kerberos Evaluationsmentioning

confidence: 99%

Quantifying DDS-cerberus network control overhead

et al. 2022

View full text Add to dashboard Cite

Securing distributed device communication is critical because the private industry and the military depend on these resources. One area that adversaries target is the middleware, which is the medium that connects different systems. This paper evaluates a novel security layer, DDS-Cerberus (DDS-C), that protects in-transit data and improves communication efficiency on data-first distribution systems. This research contributes a distributed robotics operating system testbed and designs a multifactorial performance-based experiment to evaluate DDS-C efficiency and security by assessing total packet traffic generated in a robotics network. The performance experiment follows a 2:1 publisher to subscriber node ratio, varying the number of subscribers and publisher nodes from three to eighteen. By categorizing the network traffic from these nodes into either data message, security, or discovery+ with Quality of Service (QoS) best effort and reliable, the mean security traffic from DDS-C has minimal impact to Data Distribution Service (DDS) operations compared to other network traffic. The results reveal that applying DDS-C to a representative distributed network robotics operating system network does not impact performance.

show abstract

Section: Kerberos Evaluationsmentioning

confidence: 99%

Quantifying DDS-cerberus network control overhead

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Kerberos is used as an authentication server (AS) to provide a trusted computing service and is applied in Windows, Linux, Mac OS, and Solaris. It is also used in cloud computing , wireless networks , and wireless sensor networks . However, it suffers from common password‐guessing attacks because it is based on the password‐to‐key mechanism in which the shared key between the client and Kerberos server is derived from the client's password.…”

Section: Introductionmentioning

confidence: 99%

An enhanced Kerberos protocol with non‐interactive zero‐knowledge proof

Zhu

Zhang

2014

Security Comm Networks

View full text Add to dashboard Cite

As one of the most important trusted third-party-based authentication protocols, Kerberos is widely used to provide authentication service in distributed networks. However, it is vulnerable to common brute force password-guessing attacks because of its password-based mechanism. Some enhanced Kerberos protocols based on public key cryptography were proposed as solutions, but they require excessive computation and communication resources. In this paper, a new enhanced Kerberos protocol with non-interactive zero-knowledge proof is proposed, in which the clients and the authentication server can mutually authenticate each other without revealing any information during the authentication process. Our security analysis and experimental results have shown that the proposed scheme can resist password-guessing attacks and is more convenient and efficient than previous schemes.

show abstract

Specifying SSI over EAP: Towards an Even Better Eduroam in the Future

Petrlic

2024

Lecture Notes on Data Engineering and Communications Technologies

View full text Add to dashboard Cite

EAP-Kerberos II: An adaptation of Kerberos to EAP for mutual authentication

Cited by 6 publications

References 11 publications

Quantifying DDS-cerberus network control overhead

Quantifying DDS-cerberus network control overhead

An enhanced Kerberos protocol with non‐interactive zero‐knowledge proof

Specifying SSI over EAP: Towards an Even Better Eduroam in the Future

Contact Info

Product

Resources

About