A hardware-secured credential repository for grid PKIs

Markus Lorch; Jim Basney; Dennis Kafura

A hardware-secured credential repository for grid PKIs

Markus Lorch, Jim Basney, Dennis Kafura

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Public Key Infrastructures suffer from usability and security problems associated with the request for and secure management of end user credentials. Online credential repositories provide mechanisms to ease these shortcomings but pose attractive targets for attacks due to the accumulation of credentials and the need for remote access to these credentials. Through the extension of an existing credential repository with a cryptographic co-processor for secure storage of credentials an increase in the security of the service can be achieved. This higher security permits the use of online credential repositories with a wide variety of certificates without violating certification authority regulations. Also, the improved performance afforded by hardware support improves the scalability of a centralized credential storage.

Original language	English (US)
Title of host publication	2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004
Pages	640-647
Number of pages	8
State	Published - Sep 29 2004
Externally published	Yes
Event	2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004 - Chicago, IL, United States Duration: Apr 19 2004 → Apr 22 2004

Publication series

Name	2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004

Other

Other	2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004
Country/Territory	United States
City	Chicago, IL
Period	4/19/04 → 4/22/04

ASJC Scopus subject areas

Engineering(all)

Library availability

Discover UIUC Full Text

Cite this

A hardware-secured credential repository for grid PKIs. / Lorch, Markus; Basney, Jim; Kafura, Dennis.
2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004. 2004. p. 640-647 (2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Lorch, M, Basney, J & Kafura, D 2004, A hardware-secured credential repository for grid PKIs. in 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004. 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004, pp. 640-647, 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004, Chicago, IL, United States, 4/19/04.

@inproceedings{dd7070ad5736483a82484f50dc5f49e7,

title = "A hardware-secured credential repository for grid PKIs",

abstract = "Public Key Infrastructures suffer from usability and security problems associated with the request for and secure management of end user credentials. Online credential repositories provide mechanisms to ease these shortcomings but pose attractive targets for attacks due to the accumulation of credentials and the need for remote access to these credentials. Through the extension of an existing credential repository with a cryptographic co-processor for secure storage of credentials an increase in the security of the service can be achieved. This higher security permits the use of online credential repositories with a wide variety of certificates without violating certification authority regulations. Also, the improved performance afforded by hardware support improves the scalability of a centralized credential storage.",

author = "Markus Lorch and Jim Basney and Dennis Kafura",

year = "2004",

month = sep,

day = "29",

language = "English (US)",

isbn = "078038430X",

series = "2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004",

pages = "640--647",

booktitle = "2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004",

note = "2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004 ; Conference date: 19-04-2004 Through 22-04-2004",

}

TY - GEN

T1 - A hardware-secured credential repository for grid PKIs

AU - Lorch, Markus

AU - Basney, Jim

AU - Kafura, Dennis

PY - 2004/9/29

Y1 - 2004/9/29

N2 - Public Key Infrastructures suffer from usability and security problems associated with the request for and secure management of end user credentials. Online credential repositories provide mechanisms to ease these shortcomings but pose attractive targets for attacks due to the accumulation of credentials and the need for remote access to these credentials. Through the extension of an existing credential repository with a cryptographic co-processor for secure storage of credentials an increase in the security of the service can be achieved. This higher security permits the use of online credential repositories with a wide variety of certificates without violating certification authority regulations. Also, the improved performance afforded by hardware support improves the scalability of a centralized credential storage.

AB - Public Key Infrastructures suffer from usability and security problems associated with the request for and secure management of end user credentials. Online credential repositories provide mechanisms to ease these shortcomings but pose attractive targets for attacks due to the accumulation of credentials and the need for remote access to these credentials. Through the extension of an existing credential repository with a cryptographic co-processor for secure storage of credentials an increase in the security of the service can be achieved. This higher security permits the use of online credential repositories with a wide variety of certificates without violating certification authority regulations. Also, the improved performance afforded by hardware support improves the scalability of a centralized credential storage.

UR - http://www.scopus.com/inward/record.url?scp=4544267268&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=4544267268&partnerID=8YFLogxK

M3 - Conference contribution

AN - SCOPUS:4544267268

SN - 078038430X

SN - 9780780384309

T3 - 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004

SP - 640

EP - 647

BT - 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004

T2 - 2004 IEEE International Symposium on Cluster Computing and the Grid, CCGrid 2004

Y2 - 19 April 2004 through 22 April 2004

ER -

A hardware-secured credential repository for grid PKIs

Abstract

Publication series

Other

ASJC Scopus subject areas

Library availability

Related links

Fingerprint

Cite this