1 Authentication Applications Ola Flygt Växjö University, Sweden +46 470 70 86 49.

Slides:



Advertisements
Similar presentations
ISA 662 Internet Security Protocols Kerberos Prof. Ravi Sandhu.
Advertisements

Computer Science CSC 474Dr. Peng Ning1 CSC 474 Information Systems Security Topic 4.6 Kerberos.
1 Kerberos Anita Jones November, Kerberos * : Objective Assumed environment Assumed environment –Open distributed environment –Wireless and Ethernetted.
Supervisor :Dr. Lo'ai Ali Tawalbeh Done by: Wa’el Musa Hadi
The Authentication Service ‘Kerberos’ and It’s Limitations
Henric Johnson1 Chapter 4 Authentication Applications Henric Johnson Blekinge Institute of Technology,Sweden
Chapter 10 Real world security protocols
Authentication Applications Kerberos And X.509. Kerberos Motivation –Secure against eavesdropping –Reliable – distributed architecture –Transparent –
Authentication Applications
Chapter 14 – Authentication Applications
NETWORK SECURITY.
Kerberos and X.509 Fourth Edition by William Stallings
CSCE 815 Network Security Lecture 10 KerberosX.509 February 13, 2003.
IT 221: Introduction to Information Security Principles Lecture 8:Authentication Applications For Educational Purposes Only Revised: October 20, 2002.
Authentication Applications The Kerberos Protocol Standard
SCSC 455 Computer Security
Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.
ECE454/CS594 Computer and Network Security
Behzad Akbari Spring In the Name of the Most High.
25 seconds left…...
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.
Chapter 14 From Cryptography and Network Security Fourth Edition written by William Stallings, and Lecture slides by Lawrie Brown, the Australian Defence.
Chapter 4 Authentication Applications. Objectives: authentication functions developed to support application-level authentication & digital signatures.
Winter 2006Prof. R. Aviv: Kerberos1 Kerberos Authentication Systems.
IIIT Security Workshop1 Chapter Authentication Applications ADAPTED FROM THE PRESENTATION by Henric Johnson Blekinge Institute of Technology,Sweden
AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)
Information Security Principles & Applications Topic 4: Message Authentication 虞慧群
Kerberos versions 4 and 5 X.509 Authentication Service
Authentication & Kerberos
Cryptography and Network Security Chapter 15 Fifth Edition by William Stallings Lecture slides by Lawrie Brown.
CSCE 815 Network Security Lecture 9 Digital Signatures & Authentication Applications Kerberos February 13, 2003.
1 Authentication Applications Digital Signatures Security Concerns X.509 Authentication Service Kerberos Based on slides by Dr. Lawrie Brown of the Australian.
Henric Johnson1 Chapter 4 Authentication Applications Henric Johnson Blekinge Institute of Technology,Sweden
1 Authentication Applications Based on slides by Dr. Lawrie Brown of the Australian Defence Force Academy, University College, UNSW.
Authentication Applications
Dr Alejandra Flores-Mosri Security applications Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to:
Authentication applications
Part Two Network Security Applications Chapter 4 Key Distribution and User Authentication.
Information Security Depart. of Computer Science and Engineering 刘胜利 ( Liu Shengli) Tel:
Computer Security: Principles and Practice First Edition by William Stallings and Lawrie Brown Lecture slides by Lawrie Brown Chapter 22 – Internet Authentication.
Authentication Applications Unit 6. Kerberos In Greek and Roman mythology, is a multi-headed (usually three-headed) dog, or "hellhound” with a serpent's.
1 Authentication Applications Behzad Akbari Fall 2010 In the Name of the Most High.
Chapter 21 Distributed System Security Copyright © 2008.
Authentication 3: On The Internet. 2 Readings URL attacks
Module 4 Network & Application Security: Kerberos – X509 Authentication service – IP security Architecture – Secure socket layer – Electronic mail security.
KERBEROS. Introduction trusted key server system from MIT.Part of project Athena (MIT).Developed in mid 1980s. provides centralised private-key third-party.
X.509 Topics PGP S/MIME Kerberos. Directory Authentication Framework X.509 is part of the ISO X.500 directory standard. used by S/MIME, SSL, IPSec, and.
31/03/2005Authentication Applications 1 Authentication Applications: Kerberos, X.509 and Certificates REYHAN AYDOĞAN.
Cryptography and Network Security Chapter 14 Fourth Edition by William Stallings Lecture slides by Lawrie Brown.
Network Security Lecture 25 Presented by: Dr. Munam Ali Shah.
Kerberos Guilin Wang School of Computer Science 03 Dec
1 Kerberos – Private Key System Ahmad Ibrahim. History Cerberus, the hound of Hades, (Kerberos in Greek) Developed at MIT in the mid 1980s Available as.
Winter 2006Prof. R. Aviv: Kerberos1 Kerberos Authentication Systems.
AUTHENTICATION APPLICATIONS - Chapter 14 Kerberos X.509 Directory Authentication (S/MIME)
User Authentication  fundamental security building block basis of access control & user accountability  is the process of verifying an identity claimed.
CSCE 715: Network Systems Security Chin-Tser Huang University of South Carolina.
Dr. Nermi hamza.  A user may gain access to a particular workstation and pretend to be another user operating from that workstation.  A user may eavesdrop.
1 Cryptography CSS 329 Lecture 12: Kerberos. 2 Lecture Outline Kerberos - Overview - V4 - V5.
Computer and Network Security
Chapter 14. Authentication Applications
Chapter 14 – Authentication Applications
Cryptography and Network Security
KERBEROS.
CSCE 715: Network Systems Security
Authentication Protocol
بسم الله الرحمن الرحيم فصل چهارم kerberos.
KERBEROS Miah, Md. Saef Ullah.
Kerberos and X.509 Fourth Edition by William Stallings
Authentication Applications
Presentation transcript:

1 Authentication Applications Ola Flygt Växjö University, Sweden

2 Outline Security Concerns Kerberos X.509 Authentication Service

3 Security Concerns key concerns are confidentiality and timeliness to provide confidentiality one must encrypt identification and session key info which requires the use of previously shared private or public keys need timeliness to prevent replay attacks. provided by using sequence numbers or timestamps or challenge/response

4 KERBEROS In Greek mythology, a many headed dog, the guardian of the entrance of Hades

5 KERBEROS Users wish to access services on servers. Three threats exist: User pretend to be another user. User alter the network address of a workstation. User eavesdrop on exchanges and use a replay attack.

6 KERBEROS Provides a centralized authentication server to authenticate users to servers and servers to users. Relies on conventional encryption, making no use of public-key encryption Two versions: version 4 and 5 Version 4 makes use of DES

7 Kerberos terminology Terms: C = client AS = authentication server V = server ID c = identifier of user on C ID v = identifier of V P c = password of user on C ADc = network address of C K v = secret encryption key shared by AS an V TS = timestamp || = concatenation

8 A simple Authentication Dialogue (1) C AS: ID c || P c || ID v (2) AS C:Ticket (3) C V: ID c || Ticket Ticket = E K v [ ID c || P c || ID v]

9 Problems with the simple dialogue Password in clear text Solution: Encrypt the password Need to authenticate on each request Solution: Let a ticket have a lifetime Need to authenticate to each new server Solution: Split the Kerberos server up in two parts, one Authentication Server (AS) and one Ticket Granting Server (TGS).

10 A better Authentication Dialogue Once per user logon session: (1) C AS:IDc || IDtgs (2) AS C:E [K c, Ticket tgs ] Ticket tgs =E(K tgs, [ IDc || ADc || IDtgs || TS 1 || Lifetime 1 ]) Once per type of service: (3) C TGS: IDc || IDv ||Ticket tgs (4)TGS C:Ticket v Ticket v =E(K v, [ IDc || ADc || IDv || TS 2 || Lifetime 2 ]) Once per server session: (5) C V: IDc || Ticket v

11 Problems with the better dialogue Problem 1, Lifetime associated with the ticket-granting ticket If too short repeatedly asked for password If too long greater opportunity to replay The threat is that an opponent will steal the ticket and use it before it expires. Problem 2, a rouge server can give incorrect credentials

12 Version 4 Authentication Dialogue Authentication Service Exchange: To obtain Ticket-Granting Ticket (1) C AS: ID c || ID tgs ||TS 1 (2) AS C: E Kc [K c,tgs || ID tgs || TS 2 || Lifetime 2 || Ticket tgs ] Ticket tgs =E(K tgs, [K c,tgs || ID c || AD c || ID tgs || TS 2 || Lifetime 2 ]) Ticket-Granting Service Echange: To obtain Service-Granting Ticket (3) C TGS: ID v ||Ticket tgs ||Authenticator c (4)TGS C: E(K c,tgs,[K c,v || ID v || TS 4 || Ticket v ]) Ticket tgs =E(K tgs, [K c,tgs || ID c || AD c || ID tgs || TS 2 || Lifetime 2 ]) Ticket v =E(K v, [K c,v || ID c || AD c || ID v || TS 4 || Lifetime 4 ]) Authenticator c =E(K c,tgs, [ ID c || AD c || TS 3 ])

13 Version 4 Authentication Dialogue cont. Client/Server Authentication Exchange to obtain Service (5) C V: Ticket v || Authenticator c (6)V C: EKc,v[TS 5 +1] Ticket v =E(K v, [K c,v || ID c || AD c || ID v || TS 4 || Lifetime 4 ]) Authenticator c =E(K c,v, [ ID c || AD c || TS 5 ])

14 Overview of Kerberos

15 Request for Service in Another Realm

16 Difference Between Version 4 and 5 Encryption system independence (v4 DES) Internet protocol independence (v4 IP) Message byte ordering (v5 ASN.1) Ticket lifetime (v4 max 21 hours) Authentication forwarding Inter realm authentication

Kerberos Encryption Techniques 17

18 PCBC Mode

19 Kerberos - in practice Currently have two Kerberos versions: 4 : restricted to a single realm 5 : allows inter-realm authentication Kerberos v5 is an Internet standard specified in RFC1510, and used by many utilities To use Kerberos: need to have a KDC on your network need to have Kerberized applications running on all participating systems

20 X.509 Authentication Service Distributed set of servers that maintains a database about users. Each certificate contains the public key of a user and is signed with the private key of a CA. Is used in e.g. S/MIME, IP Security, SSL/TLS and SET. RSA is recommended to use.

21 X.509 Formats

22 Typical Digital Signature Approach

23 Obtaining a Users Certificate Characteristics of certificates generated by CA: Any user with access to the public key of the CA can recover the user public key that was certified. No part other than the CA can modify the certificate without this being detected.

24 X.509 CA Hierarchy

25 Revocation of Certificates Reasons for revocation: The users secret key is assumed to be compromised. The user is no longer certified by this CA. The CAs certificate is assumed to be compromised.

26 Authentication Procedures