chapter 16 authentication in distributed system
play

Chapter 16: Authentication in Distributed System Ajay Kshemkalyani - PowerPoint PPT Presentation

Dec 22, 2023 •585 likes •1.15k views

Chapter 16: Authentication in Distributed System Ajay Kshemkalyani and Mukesh Singhal Distributed Computing: Principles, Algorithms, and Systems Cambridge University Press A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in

  1. Chapter 16: Authentication in Distributed System Ajay Kshemkalyani and Mukesh Singhal Distributed Computing: Principles, Algorithms, and Systems Cambridge University Press A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 1 / 54

  2. Distributed Computing: Principles, Algorithms, and Systems Introduction A distributed system is susceptible to a variety of security threats. A principal can impersonate other principal and authentication becomes an important requirement. Authentication is a process by which one principal verifies the identity of other principal. In one-way authentication, only one principal verifies the identity of the other principal. In mutual authentication, both communicating principals verify each other’s identity. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 2 / 54

  3. Distributed Computing: Principles, Algorithms, and Systems Background and definitions Authentication is a process of verifying that the principal’s identity is as claimed. Authentication is based on the possession of some secret information, like password, known only to the entities participating in the authentication. When an entity wants to authenticate another entity, the former will verify if the latter possesses the knowledge of the secret. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 3 / 54

  4. Distributed Computing: Principles, Algorithms, and Systems A simple classification of authentication protocols Classified based on the cryptographic technique used. There are two basic types of cryptographic techniques: symmetric (”private key”) and asymmetric (”public key”). Symmetric cryptography uses a single private key to both encrypt and decrypt data. (Let { X } k denote the encryption of X using a symmetric key k and { Y } k − 1 denote the decryption of Y using a symmetric key k.) Asymmetric cryptography, also called Public-key cryptography, uses a secret key (private key) that must be kept from unauthorized users and a public key that is made public. (For a principal x, K x and K − 1 denote its public and x private keys, respectively.) Data encrypted with the public key can be decrypted only by the corresponding private key, and data signed with the private key can only be verified with the corresponding public key. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 4 / 54

  5. Distributed Computing: Principles, Algorithms, and Systems Authentication protocols with symmetric cryptosystem In a symmetric cryptosystem, authentication protocols can be designed using to the following principle: “If a principal can correctly encrypt a message using a key that the verifier believes is known only to a principal with the claimed identity (outside of the verifier), this act constitutes sufficient proof of identity.” A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 5 / 54

  6. Distributed Computing: Principles, Algorithms, and Systems Basic Protocol Shown in Table below, where a principal P is authenticating itself to principal Q. (‘k’ denotes a secret key that is shared between only P and Q.) P : Create a message m = ”I am P.” Compute m ′ = { m, Q } k : P → Q : m, m ′ Q : verify { m, Q } k = m ′ : if equal then accept; otherwise the authentication fails Table: Basic Protocol The principal P encrypts a message m identity of Q using the symmetric key k and sends to Q. Principal Q encrypts the plaintext message and its identity to get the encrypted message. If it is equal to the encrypted message sent by P, then Q has authenticated P, else, the authentication fails. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 6 / 54

  7. Distributed Computing: Principles, Algorithms, and Systems Weaknesses A major weakness of the protocol is its vulnerability to replays. An adversary could masquerade as P by recording the message m, m’ and later replaying it to Q. Since both plaintext message m and its encrypted version m’ are sent together by P to Q, this method is vulnerable to known plaintext attacks. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 7 / 54

  8. Distributed Computing: Principles, Algorithms, and Systems Modified protocol with nonce To prevent replay attacks, we modify the protocol by adding a challenge-and-response step using nonce. A nonce ensures that old communications cannot be reused in replay attacks. P → Q : ”I am P.” Q : generate nonce n Q → P : n compute m ′ = { P, Q, n } k P : P → Q : m ′ Q : verify { P, Q, n } k = m ′ : if equal then accept; otherwise the authentication fails Table: Challenge-and-response protocol using a nonce Replay is foiled by the freshness of nonce n and because n is drawn from a large space. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 8 / 54

  9. Distributed Computing: Principles, Algorithms, and Systems Weaknesses This protocol has scalability problem because each principal must store the secret key for every other principal it would ever want to authenticate . Also vulnerable to known plaintext attacks. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 9 / 54

  10. Distributed Computing: Principles, Algorithms, and Systems Wide-mouth frog protocol Principal A authenticates itself to principal B using a server S as follows: A → S : A, { T A , K AB , B } K AS S → B : { T S , K AB , A } K BS A sends to S its identity and a packet encrypted with the key, K AS , it shares with S. The packet contains the current timestamp, A’s desired communication partner, and a randomly generated key K AB , for communication between A and B. S decrypts the packet to obtain K AB and then forwards this key to B in an encrypted packet that also contains the current timestamp and A’s identity. B decrypts this message with the key it shares with S and retrieves the identity of the other party and the key, K AB . Weaknesses: A global clock is required and the protocol will fail if the server S is compromised. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 10 / 54

  11. Distributed Computing: Principles, Algorithms, and Systems A protocol based on an authentication server Uses a centralized authentication server S that shares a secret key K XS with every principal X in the system . P → Q : ”I am P.” Q : generate nonce n Q → P : n P : compute x = { P, Q, n } K PS P → Q : x Q : compute y = { P, Q, x } K QS Q → A : y A : recover P, Q, x from y by decrypting y with K QS : recover P,Q, n from y by decrypting x with K PS : compute m = { P, Q, n } K QS A → Q : m Q : independently compute { P, Q, n } K QS and verify { P, Q, n } K QS = m : if equal, then accept; otherwise, the authentication fails Table: A protocol using an authentication server A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 11 / 54

  12. Distributed Computing: Principles, Algorithms, and Systems A protocol based on an authentication server The principal P sends its identity to Q. Q generates a nonce and sends this nonce to P. P then encrypts P, Q, n with the key K PS and sends this encrypted value x to Q. Q then encrypts P, Q, x with K QS and sends this encrypted value y to authentication server S. Since S knows both the secret keys, it decrypts y with K QS , recovers x , decrypts x with K PS and recovers P, Q, n. Server S then encrypts P, Q, n with key K QS and sends the encrypted value m to Q. Q then computes P, Q, n K QS and verifies if this value is equal to the value received from S. If both values are equal, then authentication succeeds, else it fails. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 12 / 54

  13. Distributed Computing: Principles, Algorithms, and Systems One-time password scheme In the One-Time Password scheme, a password can only be used once. The system generates a list of passwords and secretly communicates this list to the client and the server. The client uses the passwords in the list to log on to a server. The server always expects the next password in the list at the next logon. Therefore, even if a password is disclosed, the possibility of replay attacks is eliminated because a password is used only once. Protocol consist of two stages: Registration stage: where the client registers with the server and gets a list of passwords. Login and authentication stage: where the server authenticates the client. A. Kshemkalyani and M. Singhal (Distributed Computing) Authentication in Distributed System CUP 2008 13 / 54

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
Authentication CS461/ECE422 Fall 2009 1 Reading Chapter 12 from Computer Security

Authentication CS461/ECE422 Fall 2009 1 Reading Chapter 12 from Computer Security

Authentication CS461/ECE422 Fall 2009 1 Reading Chapter 12 from Computer Security Chapter 10 from Handbook of Applied Cryptography http://www.cacr.math.uwaterloo.ca/hac/abou 2 Overview Basics of an authentication system

515 views • 40 slides
Authentication CS461/ECE422 Fall 2010 1 Reading Chapter 12 from Computer Security

Authentication CS461/ECE422 Fall 2010 1 Reading Chapter 12 from Computer Security

Authentication CS461/ECE422 Fall 2010 1 Reading Chapter 12 from Computer Security Chapter 10 from Handbook of Applied Cryptography http://www.cacr.math.uwaterloo.ca/hac/about/cha 2 Overview Basics of an authentication system

557 views • 40 slides
Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography

Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography

Authentication CS461/ECE422 1 Reading Chapter 10 from Handbook of Applied Cryptography http://www.cacr.math.uwaterloo.ca/hac/ about/chap10.pdf 2 Overview Basics of an authentication system Passwords Storage Selection

410 views • 38 slides
Distributed Systems (3rd Edition) Chapter 01: Introduction Version: February 25, 2017

Distributed Systems (3rd Edition) Chapter 01: Introduction Version: February 25, 2017

Distributed Systems (3rd Edition) Chapter 01: Introduction Version: February 25, 2017 Introduction: What is a distributed system? Distributed System Definition A distributed system is a collection of autonomous computing elements that

2.2k views • 78 slides
Distributed Coordination What makes a system distributed? Time in a distributed system

Distributed Coordination What makes a system distributed? Time in a distributed system

CPSC-410/611: Operating Systems Distr Coord Distributed Coordination What makes a system distributed? Time in a distributed system How do we determine the global state of a distributed system? Event ordering Mutual exclusion

405 views • 12 slides
CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts

CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts

CS 356 Lecture 28 Internet Authentication Spring 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists Chapter

493 views • 20 slides
Authentication, Authorisation and Accounting in a Distributed Multimedia Content Delivery System

Authentication, Authorisation and Accounting in a Distributed Multimedia Content Delivery System

Authentication, Authorisation and Accounting in a Distributed Multimedia Content Delivery System Miros aw Czyrnek (majrek@man.poznan.pl) Marcin Lubo ski (laser@man.poznan.pl) Cezary Mazurek (mazurek@man.poznan.pl) AGENDA AGENDA

447 views • 22 slides
Authentication in Distributed Systems Austen Barker Access Control Operation Object principal

Authentication in Distributed Systems Austen Barker Access Control Operation Object principal

Authentication in Distributed Systems Austen Barker Access Control Operation Object principal Reference monitor Challenges of a distributed system Autonomy : Path from principal to an object may be long and convoluted. Size : Usually much

304 views • 29 slides
Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as

Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as

Authentication Establish and verify identity allow access to resources Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the

228 views • 10 slides
Course introduction Defining distributed system s A distributed system is one in which

Course introduction Defining distributed system s A distributed system is one in which

Distributed System s Fall 2 0 0 8 Course introduction Defining distributed system s A distributed system is one in which components located at networked computers communicate and coordinate their actions by passing messages. (Coulouris,

579 views • 42 slides
MC714 - Sistemas Distribuidos slides by Maarten van Steen (adapted from Distributed System - 3rd

MC714 - Sistemas Distribuidos slides by Maarten van Steen (adapted from Distributed System - 3rd

MC714 - Sistemas Distribuidos slides by Maarten van Steen (adapted from Distributed System - 3rd Edition) Chapter 01: Introduction Version: March 9, 2020 Introduction: What is a distributed system? Distributed System Definition A distributed

897 views • 61 slides
Silberschatz and Galvin Chapter 16 Distributed System Structures CPSC 410--Richard Furuta

Silberschatz and Galvin Chapter 16 Distributed System Structures CPSC 410--Richard Furuta

Silberschatz and Galvin Chapter 16 Distributed System Structures CPSC 410--Richard Furuta 4/13/99 1 Distributed System Structures General structure of distributed systems Network Operating Systems Distributed Operating Systems

96 views • 9 slides
CS 356 Lecture 25 and 26 Operating System Security Spring 2013 Review Chapter 1: Basic

CS 356 Lecture 25 and 26 Operating System Security Spring 2013 Review Chapter 1: Basic

CS 356 Lecture 25 and 26 Operating System Security Spring 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists

373 views • 36 slides
Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as

Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as

Distributed Systems Authentication Protocols Paul Krzyzanowski pxk@cs.rutgers.edu Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Page 1 Page 1 Authentication

799 views • 59 slides
95-702 Distributed Systems Lecture 7: Internetworking See Chapter 3 of Colouris 95-702

95-702 Distributed Systems Lecture 7: Internetworking See Chapter 3 of Colouris 95-702

95-702 Distributed Systems Lecture 7: Internetworking See Chapter 3 of Colouris 95-702 Distributed Systems Master of 1 Information System Management Learning Goals Preamble: MISM and MSIT grads may need to plan, develop, and manage

532 views • 50 slides
HDS Facility Expansion Site Review Committee HERITAGE DISPOSAL & STORAGE, LLC DWIGHT MILLER,

HDS Facility Expansion Site Review Committee HERITAGE DISPOSAL & STORAGE, LLC DWIGHT MILLER,

7/25/2016 HDS Facility Expansion Site Review Committee HERITAGE DISPOSAL & STORAGE, LLC DWIGHT MILLER, PE, PARAMETRIX MARK VESS, HDS July 19, 2016 PRESENTATION OUTLINE Factors considered in this presentation 1. #1 Economic Considerations 2.

257 views • 7 slides
Multi Modal Facility Feasibility Study Community Open House #3 The presentation will begin at

Multi Modal Facility Feasibility Study Community Open House #3 The presentation will begin at

Multi Modal Facility Feasibility Study Community Open House #3 The presentation will begin at 7:05 p.m . November 16, 2017 1 Introductions Mike Costa City of Elk Grove Interim Transit Manager Tom Metcalf City of Elk Grove Project

288 views • 28 slides
EXPERT GROUP ROAD SIGNS & SIGNALS Final Report Convention signs ECE/TRANS/WP.1/2019/4

EXPERT GROUP ROAD SIGNS & SIGNALS Final Report Convention signs ECE/TRANS/WP.1/2019/4

EXPERT GROUP ROAD SIGNS & SIGNALS Final Report Convention signs ECE/TRANS/WP.1/2019/4 MANDATE Three main objectives: 1. assess the internal (in)consistencies of the 1968 Convention on Road Signs and Signals and the 1971 European Agreement

519 views • 14 slides
extended access to EudraVigilance for industry 6 th Industry Stakeholder Platform Meeting, 18 th

extended access to EudraVigilance for industry 6 th Industry Stakeholder Platform Meeting, 18 th

Signal Management in the EU and future extended access to EudraVigilance for industry 6 th Industry Stakeholder Platform Meeting, 18 th December 2015 Presented by Georgy Genov 7 December 2015 An agency of the European Union Head of Signal

294 views • 25 slides
Neighborhood Traffic Mitigation Meeting #9 July 6, 2017 5:30 Welcome 5:35 East

Neighborhood Traffic Mitigation Meeting #9 July 6, 2017 5:30 Welcome 5:35 East

Neighborhood Traffic Mitigation Meeting #9 July 6, 2017 5:30 Welcome 5:35 East Link Project Coordination 5:40 East Link Construction on Bellevue Way and 112 th Ave SE 5:50 Traffic Study Results 6:10 Pilot

419 views • 27 slides
Protecting Vulnerable Consumers in the Digital Age G20 International Conference on Consumer Policy

Protecting Vulnerable Consumers in the Digital Age G20 International Conference on Consumer Policy

MAKING MARKE T S WORK WE L L Protecting Vulnerable Consumers in the Digital Age G20 International Conference on Consumer Policy (6 September 2019) Outline Introduction: CPFTA and CCCS CPFTA on Vulnerable Consumers Vulnerability of

179 views • 14 slides
Internet Abuse Identification and personalised withdrawal strategies Submission no:

Internet Abuse Identification and personalised withdrawal strategies Submission no:

Internet Abuse Identification and personalised withdrawal strategies Submission no: 2019-1-UK01-KA204-062021 The European Commission's support for the production of this publication does not constitute an endorsement of the contents, which reflect

422 views • 9 slides
Only in Scotland How do experiences drive VisitScotlands marketing Slide 1 A holiday is

Only in Scotland How do experiences drive VisitScotlands marketing Slide 1 A holiday is

Only in Scotland How do experiences drive VisitScotlands marketing Slide 1 A holiday is all about special moments moments with family and friends, moments to enjoy new experiences and visit new places or perhaps to return to

92 views • 6 slides

More recommend