Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Kirsal, Yonal; Gemikonakli, Orhan

doi:10.1109/ukricis.2008.4798930

Cited by 6 publications

(9 citation statements)

References 11 publications

(42 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In order to provide higher security, various specifications regarding security protocols have been developed and many security protocols have been built around these specifications. Most of these protocols agreed upon a cryptographic key or achieved authentication specifications [1,8].These studies indicate that cryptographic protocols are prone to various types of attacks.…”

Section: Related Workmentioning

confidence: 99%

“…The proposed framework and protocol script [8] provide a design of security solution for wireless local area networks. Since Kerberos is a trusted third party authentication protocol, its paradigms and entities are finalised for the proposed framework [4].…”

Section: Related Workmentioning

confidence: 99%

“…Renewing keys at various intervals while potential intruders are blocked out would inevitably work against intruders. Although intruders may have the power to attack, the protocol is successful in preventing replay attacks [8].…”

Section: Introductionmentioning

confidence: 99%

“…In this work, introduced new protocol based on the use of timestamps to delaying decryption [8]. For protocol verification, Schneider's CSP process algebra is used along with the central rank function theorem.…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Analysing the Combined Kerberos Timed Authentication Protocol and Frequent Key Renewal Using CSP and Rank Functions

2014

KSII TIIS

View full text Add to dashboard Cite

Authentication mechanisms coupled with strong encryption techniques are used for network security purposes; however, given sufficient time, well-equipped intruders are successful for compromising system security. The authentication protocols often fail when they are analysed critically. Formal approaches have emerged to analyse protocol failures. In this study, Communicating Sequential Processes (CSP) which is an abstract language designed especially for the description of communication patterns is employed. Rank functions are also used for verification and analysis which are helpful to establish that some critical information is not available to the intruder. In order to establish this, by assigning a value or rank to each critical information, it is shown that all the critical information that can be generated within the network have a particular characterizing property. This paper presents an application of rank functions approach to an authentication protocol that combines delaying the decryption process with timed authentication while keys are dynamically renewed under pseudo-secure situations. The analysis and verification of authentication properties and results are presented and discussed

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Analysing the Combined Kerberos Timed Authentication Protocol and Frequent Key Renewal Using CSP and Rank Functions

2014

KSII TIIS

View full text Add to dashboard Cite

show abstract

“…Also, security features added should not hinder the performance of Kerberos. Kirsal et al coauthored and published three papers that proposed increasing Kerberos security by using frequent key renewal for a local area network [19][20][21]. They utilized CASPER for the first paper's security analysis.…”

Section: Kerberos Evaluationsmentioning

confidence: 99%

Quantifying DDS-cerberus network control overhead

et al. 2022

View full text Add to dashboard Cite

Securing distributed device communication is critical because the private industry and the military depend on these resources. One area that adversaries target is the middleware, which is the medium that connects different systems. This paper evaluates a novel security layer, DDS-Cerberus (DDS-C), that protects in-transit data and improves communication efficiency on data-first distribution systems. This research contributes a distributed robotics operating system testbed and designs a multifactorial performance-based experiment to evaluate DDS-C efficiency and security by assessing total packet traffic generated in a robotics network. The performance experiment follows a 2:1 publisher to subscriber node ratio, varying the number of subscribers and publisher nodes from three to eighteen. By categorizing the network traffic from these nodes into either data message, security, or discovery+ with Quality of Service (QoS) best effort and reliable, the mean security traffic from DDS-C has minimal impact to Data Distribution Service (DDS) operations compared to other network traffic. The results reveal that applying DDS-C to a representative distributed network robotics operating system network does not impact performance.

show abstract

Classification Analysis of Intrusion Detection on NSL-KDD Using Machine Learning Algorithms

Ever¹,

Şekeroğlu²,

Dimililer³

2019

Mobile Web and Intelligent Information Systems

View full text Add to dashboard Cite

Improving kerberos security through the combined use of the timed authentication protocol and frequent key renewal

Cited by 6 publications

References 11 publications

Analysing the Combined Kerberos Timed Authentication Protocol and Frequent Key Renewal Using CSP and Rank Functions

Analysing the Combined Kerberos Timed Authentication Protocol and Frequent Key Renewal Using CSP and Rank Functions

Quantifying DDS-cerberus network control overhead

Classification Analysis of Intrusion Detection on NSL-KDD Using Machine Learning Algorithms

Contact Info

Product

Resources

About