使用TLS扩展的保险箱云身份验证

2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC) Pub Date : 2015-09-10 DOI:10.1109/SSIC.2015.7245679

M. Msahli, M. T. Hammi, A. Serhrouchni

{"title":"使用TLS扩展的保险箱云身份验证","authors":"M. Msahli, M. T. Hammi, A. Serhrouchni","doi":"10.1109/SSIC.2015.7245679","DOIUrl":null,"url":null,"abstract":"Although the great success and the popularity of Cloud computing, an important number of challenges and threats are inherent to this new computing paradigm. One of the serious challenges in Cloud service architecture is managing authentication. Our goal in this paper is to present a flexible authentication solution based on TLS standard and asynchronous one time password mechanism. Our purpose is to be as close as possible to the TLS standard treatment and calculation of different security settings. The addition of a strong password (HOTP) preserves a maximum of operational reliability to TLS protocol. We also offer the same strength client authentication method as digital certificate. In this paper we will also demonstrate the efficiency of the proposed framework as an authentication alternative in case of private Safe Box Cloud Service.","PeriodicalId":242945,"journal":{"name":"2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC)","volume":"72 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-09-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Safe box cloud authentication using TLS extesion\",\"authors\":\"M. Msahli, M. T. Hammi, A. Serhrouchni\",\"doi\":\"10.1109/SSIC.2015.7245679\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Although the great success and the popularity of Cloud computing, an important number of challenges and threats are inherent to this new computing paradigm. One of the serious challenges in Cloud service architecture is managing authentication. Our goal in this paper is to present a flexible authentication solution based on TLS standard and asynchronous one time password mechanism. Our purpose is to be as close as possible to the TLS standard treatment and calculation of different security settings. The addition of a strong password (HOTP) preserves a maximum of operational reliability to TLS protocol. We also offer the same strength client authentication method as digital certificate. In this paper we will also demonstrate the efficiency of the proposed framework as an authentication alternative in case of private Safe Box Cloud Service.\",\"PeriodicalId\":242945,\"journal\":{\"name\":\"2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC)\",\"volume\":\"72 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-09-10\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SSIC.2015.7245679\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SSIC.2015.7245679","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

尽管云计算取得了巨大的成功和普及，但这种新的计算范式也存在许多固有的挑战和威胁。云服务架构中的一个严重挑战是管理身份验证。本文的目标是提出一种基于TLS标准和异步一次性密码机制的灵活的身份验证解决方案。我们的目的是尽可能接近TLS的标准处理和计算不同的安全设置。添加强密码(HOTP)可以最大限度地保证TLS协议的运行可靠性。我们还提供与数字证书相同强度的客户端认证方法。在本文中，我们还将演示所提出的框架作为私有保险箱云服务的认证替代方案的效率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Safe box cloud authentication using TLS extesion

Although the great success and the popularity of Cloud computing, an important number of challenges and threats are inherent to this new computing paradigm. One of the serious challenges in Cloud service architecture is managing authentication. Our goal in this paper is to present a flexible authentication solution based on TLS standard and asynchronous one time password mechanism. Our purpose is to be as close as possible to the TLS standard treatment and calculation of different security settings. The addition of a strong password (HOTP) preserves a maximum of operational reliability to TLS protocol. We also offer the same strength client authentication method as digital certificate. In this paper we will also demonstrate the efficiency of the proposed framework as an authentication alternative in case of private Safe Box Cloud Service.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2015 International Conference on Cyber Security of Smart Cities, Industrial Control System and Communications (SSIC)

自引率

0.00%

发文量