Fault-Tolerant Key Distribution (Preliminary Version)

Abstract

Many authentication or key distribution protocols have been proposed to distribute cryptographic keys for secure communication in open networks. These protocols often employ trusted authentication and time services whose corruption or failure could result in security breaches or prevent correct principals from establishing secure communication. In this paper, we describe the design and implementation of authentication and time services that securely and fault-tolerantly support key distribution. By using replication only when necessary, and introducing novel replication techniques when it was necessary, we have constructed these services to be easily defensible against malicious attack. Moreover, the transient unavailability of even a substantial number of servers does not hinder key distribution between correct principals or expose protocols to intruder attacks. We also describe how these services function as the foundation for a more comprehensive security architecture that we have implemented for fault-tolerant systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 1993
Accession Number
ADA261489

Entities

People

  • Ken Birman
  • Michael Reiter
  • Robert Van Renesse

Organizations

  • Cornell University

Tags

Communities of Interest

  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Algorithms
  • Authentication
  • Availability
  • Clocks
  • Computer Programming
  • Computer Science
  • Computers
  • Computing System Architectures
  • Cryptography
  • Distributed Computing
  • Fail Safe
  • Fault Tolerance
  • Intervals
  • Operating Systems
  • Secure Communications
  • Security Protocols
  • Transport Protocols

Fields of Study

  • Computer science
  • Mathematics

Readers

  • Cybersecurity.
  • Parallel and Distributed Computing.