Views
3 years ago

Download Paper

Download Paper

Download

Short Lived Credential Service Implementation Based onNational AAIEmir Imamagic, Dobrisa Dobrenic, Miroslav MilinovicUniversity Computing Centre, University of Zagreb, Croatia{emir.imamagic, dobrisa.dobrenic, miroslav.milinovic}@srce.hrMiroslav PopovicFaculty of Electrical Engineering and Computing, University of Zagreb, Croatia{miroslav.popovic}@fer.hrKeywordsSLCS, AAI, PKI, CA, digital certificateAbstractIn this paper we describe SLCS implementation based on national AAI. Main goal of the SLCS isto provide a bridge between established system which provides AAI services to wide communityof users and infrastructures which require PKI-based authentication.Problem descriptionX.509 public key infrastructure (PKI) is widely used today for achieving strong authentication.The most visible application of X.509 certificates ([5]) is in secure web servers and gridenvironment. From the perspective of end users handling personal certificates have some seriousdrawbacks:• Issuing and reissuing a certificate usually requires user to go through complex identificationprocess (face to face meeting, paper and signed e-mail requests, etc).• X.509 certificates require cautious maintenance, for example protecting private keys, periodicrenewal, revocation in case of forgotten password or lost keys. For end users with limitedtechnical knowledge this creates significant burden.• Mobile users authenticating from many locations need to transport personal certificates andinstall it on multiple workstations which is impractical and creates additional risk of privatekey compromise.On the other hand many institutes are already members of established authentication andauthorization infrastructures (AAI) in their countries. Such AAIs enable users to use the samecredentials to access various resources across different organizations. Further advantage of AAIfor the end user is that the registration is performed only once at same time when his credentialsare issued.Short Lived Credential Service (SLCS) is a service that issues X.509 certificates with shortlifetime based on the authentication at existing AAI system. Due to the short lifetime, thesecertificates don’t require long term maintenance and can be issued when needed and simplydiscarded upon usage. The main idea behind SLCS is to enable users to get such “lightweight”certificates (also called SLCS certificates) based on their existing AAI credentials. Usage of suchlightweight certificates alleviates certificate handling and issues described above.

to download white paper - Talariax
to download white paper - Talariax
Download the paper - Barilla CFN
Download this white paper - MyKnowledgeMap
Download this paper - CE Pro
Download the "Call for Papers" here - EUPAVE
Download the paper - The International Academic Forum
download paper - Laboratory of Thermofluids, Combustion and ...
Download the LinkedIn Advertising White Paper - Fathom
Download working paper No. 161 - The Bartlett - UCL
Download paper - Australian and New Zealand Society of Criminology
SharePoint Sites White Papers Download - Data Networks
Download White Paper (PDF) - ANCRA SYSTEMS
Download the Paper - Jay Chiat Awards for Strategic Excellence
Download working paper No. 146 - The Bartlett - UCL
to download this paper in PDF format - Baines Simmons