The Design and Implementation of a JCA-Compliant Capture Protection Infrastructure

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Michael K. Reiter Articles by Asad Samar Articles by Chenxi Wang

22nd International Symposium on Reliable Distributed Systems (SRDS'03)

Florence, Italy

October 06-October 08

ISBN: 0-7695-1955-5

	ASCII Text	x
	Michael K. Reiter, Asad Samar, Chenxi Wang, "The Design and Implementation of a JCA-Compliant Capture Protection Infrastructure," Reliable Distributed Systems, IEEE Symposium on, pp. 339, 22nd International Symposium on Reliable Distributed Systems (SRDS'03), 2003.

	BibTex	x
	@article{ 10.1109/RELDIS.2003.1238086, author = {Michael K. Reiter and Asad Samar and Chenxi Wang}, title = {The Design and Implementation of a JCA-Compliant Capture Protection Infrastructure}, journal ={Reliable Distributed Systems, IEEE Symposium on}, volume = {0}, year = {2003}, issn = {1060-9857}, pages = {339}, doi = {http://doi.ieeecomputersociety.org/10.1109/RELDIS.2003.1238086}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Reliable Distributed Systems, IEEE Symposium on TI - The Design and Implementation of a JCA-Compliant Capture Protection Infrastructure SN - 1060-9857 SP EP A1 - Michael K. Reiter, A1 - Asad Samar, A1 - Chenxi Wang, PY - 2003 KW - null VL - 0 JA - Reliable Distributed Systems, IEEE Symposium on ER -

Michael K. Reiter, Carnegie Mellon University

Asad Samar, Carnegie Mellon University

Chenxi Wang, Carnegie Mellon University

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/RELDIS.2003.1238086

A capture protection server protects a cryptographic key on a device that may be captured by authenticating the user of the device (e.g., by password) before permitting the key to be used. Delegation from one capture protection server to another enables the new server to perform this capture protection function for the device. Delegation, however, opens the system to new vulnerabilities, including difficulties in limiting online password-guessing attacks and in disabling a device that has been stolen by an attacker who knows the password. Here we propose a lightweight protocol for coordinating capture protection servers that eliminates these vulnerabilities. We also report on the implementation of our protocol in a JCA-compliant cryptographic service provider, and ramifications of the JCA interfaces for our approach.

Citation:

Michael K. Reiter, Asad Samar, Chenxi Wang, "The Design and Implementation of a JCA-Compliant Capture Protection Infrastructure," srds, pp.339, 22nd International Symposium on Reliable Distributed Systems (SRDS'03), 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.