{"title":"构建分布式认证CDN","authors":"Sam Moffatt","doi":"10.1109/ICDKE.2011.6053930","DOIUrl":null,"url":null,"abstract":"In recent times, much has been made of the security, or lack thereof, utilised within Facebook's content distribution network (CDN). Their CDN is noted to enable public access to any resource via a GET request presuming the user knows the URL for the resource. This means that not only can users directly access material that they would otherwise not have access to but it also means that material that has been considered “deleted” may still be accessible. noncdn is a content distribution network designed to provide light-weight authenticated access to content stored at edge nodes with easily replicated authentication access through time limited authentication tokens. noncdn provides “volumes” as a container for handling access control and authentication nodes for generation and validation of authentication tokens. As tokens identify individuals, accesses can be logged and tracked to provide extra auditing functionality.","PeriodicalId":377148,"journal":{"name":"2011 International Conference on Data and Knowledge Engineering (ICDKE)","volume":"47 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Building a distributed authenticating CDN\",\"authors\":\"Sam Moffatt\",\"doi\":\"10.1109/ICDKE.2011.6053930\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In recent times, much has been made of the security, or lack thereof, utilised within Facebook's content distribution network (CDN). Their CDN is noted to enable public access to any resource via a GET request presuming the user knows the URL for the resource. This means that not only can users directly access material that they would otherwise not have access to but it also means that material that has been considered “deleted” may still be accessible. noncdn is a content distribution network designed to provide light-weight authenticated access to content stored at edge nodes with easily replicated authentication access through time limited authentication tokens. noncdn provides “volumes” as a container for handling access control and authentication nodes for generation and validation of authentication tokens. As tokens identify individuals, accesses can be logged and tracked to provide extra auditing functionality.\",\"PeriodicalId\":377148,\"journal\":{\"name\":\"2011 International Conference on Data and Knowledge Engineering (ICDKE)\",\"volume\":\"47 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2011-10-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2011 International Conference on Data and Knowledge Engineering (ICDKE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICDKE.2011.6053930\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 International Conference on Data and Knowledge Engineering (ICDKE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDKE.2011.6053930","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
In recent times, much has been made of the security, or lack thereof, utilised within Facebook's content distribution network (CDN). Their CDN is noted to enable public access to any resource via a GET request presuming the user knows the URL for the resource. This means that not only can users directly access material that they would otherwise not have access to but it also means that material that has been considered “deleted” may still be accessible. noncdn is a content distribution network designed to provide light-weight authenticated access to content stored at edge nodes with easily replicated authentication access through time limited authentication tokens. noncdn provides “volumes” as a container for handling access control and authentication nodes for generation and validation of authentication tokens. As tokens identify individuals, accesses can be logged and tracked to provide extra auditing functionality.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
