Countering Abuse of Name-Based Authentication
Authentication for access control procedures is usually based on the identity of participating entities. In some communications systems, identities are partially or wholly resolved using hostnames or machine addresses in the underlying protocol suite. Access control lists and revocation lists are often defined on the basis of hostnames, whereby the communication subsystem at runtime utilizes machine addresses. After communications between two machines are established, hosts identify each other by their protocol addresses. To map this address to a high-level name, which can then be compared with access control or revocation lists to grant or deny access, a resolution process is initiated. The abstraction from protocol addresses to high-level hostnames is necessary to hide details of heterogeneous communication subsystems, and of dynamic network configurations from the application layer where a uniform, high-level naming scheme is desired. [via]
http://homes.cerias.purdue.edu/~spaf/tech-rep...
authentication
Related Files
- Addressing Weaknesses in the Domain Name System Protocol
- Dos and Don'ts of Client Authentication on the Web
- A Software Architecture to support Misuse Intrusion Detection
- User Authentication and Related Topics: An Annotated Bibliography
- Misunderstanding Javascript Injection: A Paper on Web Application Abuse Via Javascript Injection
- Prevention of Mental Disorders
Sponsored Links
Free Download Amcor Manual, Guide, Instructions, available in PDF ebooks format.
Rate this Document
Popular eBooks
- Java Platform Migration Guide Version 1.3 to 5.0
- Java Web Start Overview White Paper
- Java 2 Platform, Standard Edition 5.0: Troubleshooting and Diagnostic Guide
- MySQL 5.0 Stored Procedures
- Numerical Python
- An Introduction to Python - Release 2.2.2
- Python/C API Reference Manual - Release 2.5
- Trusted Platform Module (TPM) based Security on Notebook PCs - White Paper
- A Z Patterns Catalogue II: Definitions and Laws, v0.1
- Tutorial on Python Iterators and Generators
ADS
Tag Clouds
3d algorithm analysis application architecture design ebook energy framework guide java javascript kernel linux manual network paper programming python reference security software system theory thesis tutorial typography web service white paper xml
Last Download
- The Elements of Typographic Style
- SpaceStat
- Java Object Serialization Specification
- Automatic Kinetic Typography Composer
- ARTstor Resources in the History of Photography
BookShelf
- Real-Time Deep-Ocean Tsunami Measuring, Monitoring, and Reporting System: The NOAA DART II Description and Disclosure
- Competition for Feed Resources from Other Applications: Ethanol and Bio-Diesel
- Application of Computational Fluid Dynamics
- A Less Elementary Tutorial for the PVS Specication and Verication System
- Bio-Energy Trade and Regional Development: The Case of Bio-Ethanol in Southern Africa
