SecurSight: An Architecture for Secure Information Access

A
ACSAC
1999
15th Annual Computer Security Applications Conference (ACSAC '99)
Abstract - SecurSight: An Architecture for Secure Information Access

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by John G. Brainard

15th Annual Computer Security Applications Conference (ACSAC '99)

Phoenix, Arizona

December 06-December 10

ISBN: 0-7695-0346-2

	ASCII Text	x
	John G. Brainard, "SecurSight: An Architecture for Secure Information Access," Computer Security Applications Conference, Annual, pp. 349, 15th Annual Computer Security Applications Conference (ACSAC '99), 1999.

	BibTex	x
	@article{ 10.1109/CSAC.1999.816046, author = {John G. Brainard}, title = {SecurSight: An Architecture for Secure Information Access}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {1999}, issn = {1063-9527}, pages = {349}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.1999.816046}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - SecurSight: An Architecture for Secure Information Access SN - 1063-9527 SP EP A1 - John G. Brainard, PY - 1999 KW - architecture KW - authentication KW - authorization KW - PKI VL - 0 JA - Computer Security Applications Conference, Annual ER -

John G. Brainard, RSA Laboratories

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.1999.816046

This paper describes SecurSight, an architecture that combines authentication, authorization, and secure communications. The primary goal of this architecture is to secure access to network resources, while providing a smooth migration path from legacy authentication and authorization methods to a public-key infrastructure. Authentication may utilize either shared secrets or public/private key pairs. Authorization is public-key based and provides both direct support for PKI-aware applications and indirect support for legacy applications. Authorization credentials are portable, and may be used in location-independent fashion, without the need for cumbersome export and import procedures.

Index Terms:

architecture, authentication, authorization, PKI

Citation:

John G. Brainard, "SecurSight: An Architecture for Secure Information Access," acsac, pp.349, 15th Annual Computer Security Applications Conference (ACSAC '99), 1999

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.