Layering Public Key Distribution Over Secure DNS using Authenticated Delegation

A
ACSAC
2005
21st Annual Computer Security Applications Conference (ACSAC'05)
Abstract - Layering Public Key Distribution Over Secure DNS using Authenticated Delegation

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by John P. Jones Articles by Daniel F. Berger Articles by Chinya V. Ravishankar

21st Annual Computer Security Applications Conference (ACSAC'05)

Tucson, Arizona

December 05-December 09

ISBN: 0-7695-2461-3

	ASCII Text	x
	John P. Jones, Daniel F. Berger, Chinya V. Ravishankar, "Layering Public Key Distribution Over Secure DNS using Authenticated Delegation," Computer Security Applications Conference, Annual, pp. 409-418, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005.

	BibTex	x
	@article{ 10.1109/CSAC.2005.35, author = {John P. Jones and Daniel F. Berger and Chinya V. Ravishankar}, title = {Layering Public Key Distribution Over Secure DNS using Authenticated Delegation}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2005}, issn = {1063-9527}, pages = {409-418}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.35}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Layering Public Key Distribution Over Secure DNS using Authenticated Delegation SN - 1063-9527 SP409 EP418 A1 - John P. Jones, A1 - Daniel F. Berger, A1 - Chinya V. Ravishankar, PY - 2005 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

John P. Jones, University of California, Riverside

Daniel F. Berger, University of California, Riverside

Chinya V. Ravishankar, University of California, Riverside

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CSAC.2005.35

We present the Internet Key Service (IKS), a distributed architecture for authenticated distribution of public keys, layered on Secure DNS (DNSSEC). Clients use DNSSEC to securely discover the identities of the relevant IKS servers, and send key lookup or management requests directly to these servers using a special-purpose protocol. Clients authenticate keys retrieved from IKS servers using key commitments published in DNSSEC. IKS derives its authentication authority from the authority DNS domains have over Internet names. The IKS architecture is loosely coupled with DNS to minimize overhead on DNS servers. We also present RIKS, a prototype IKS implementation.

Citation:

John P. Jones, Daniel F. Berger, Chinya V. Ravishankar, "Layering Public Key Distribution Over Secure DNS using Authenticated Delegation," acsac, pp.409-418, 21st Annual Computer Security Applications Conference (ACSAC'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.