DToken: A Lightweight and Traceable Delegation Architecture for Distributed Systems

机译：dtoken：用于分布式系统的轻量级和可追踪的委派架构

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Several major techniques have been proposed to address delegation problems in distributed computing environments of various scales, ranging from LAN, WAN, to the Internet. One of the major characteristics of existing public key cryptography based delegation mechanisms is their use of a fresh key pair every step along the delegation chain. This has led to a range of open issues, including a non-negligible performance overhead imposed by using a fresh key pair in proxy credentials; the lack of traceability of the principals in a delegation chain; and the complexity of managing the dynamically created key pairs in the distributed environment. This paper focuses on the architectural issues of delegation. We propose anew delegation architecture, called DToken, that takes advantage of the PKI. DToken is lightweight as it eliminates the use of freshly generated key pairs in a distributed setting. DToken is also traceable because the identity of the principals in a delegation chain is preserved by cryptographically verifiable mechanisms. A preliminary evaluation demonstrates that DToken outperforms the popular delegation solution of proxy certificate. In a single-level delegation, the cost of creating a DToken, the major cost of delegation, is roughly 1/3, 1/5, and 1/10 of that of creating a proxy certificate when the certificate key size is 512, 1024, and 2048 bits, respectively.

机译：已经提出了几种主要技术来解决各种尺度的分布式计算环境中的委派问题，从LAN，WAN到互联网。现有的基于公钥加密的代表机制的主要特征之一是他们使用新的关键对沿着代表团链的每一步。这导致了一系列的开放问题，包括在代理凭证中使用新鲜密钥对强加的不可忽略的性能开销;在代表团链中缺乏校长的可追溯性;以及在分布式环境中管理动态创建的键对的复杂性。本文侧重于代表团的建筑问题。我们提出了重新授权架构，称为Dtoken，它利用了PKI。 DToken是轻量级，因为它消除了在分布式设置中使用新生成的键对。 DToken也是可追溯的，因为代表链中的主体的身份通过加密可验证的机制保留。初步评估表明，DToken优于代理证书的流行委派解决方案。在单级别的委派中，创建Dtoken的成本，委派的主要成本，大约为1/3,1 / 5和1/10，其中在证书密钥大小为512,1024时创建代理证书分别为2048位。

著录项

来源
《IEEE Symposium on Reliable Distributed Systems》|2009年||共10页
会议地点
作者

展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP271.6-53;
关键词
Grid delegation; Grid key management; delegation architecture; lightweight delegation; traceable delegation;

机译：网格代表团;网格密钥管理;委托建筑;轻量级代表团;可追踪代表团;

相似文献

外文文献
中文文献
专利

1. A Distributed Architecture for Certificate-based Delegation of Business Process Accessibility in Virtual Organizations [J] . Talaei-Khoei Amir Journal of computing and information technology . 2009,第4期

机译：虚拟组织中基于证书的业务流程可访问性的分布式体系结构
2. A Distributed Architecture for Certificate-based Delegation of Business Process Accessibility in Virtual Organizations [J] . Amir Talaei-Khoei Journal of Computing and Information Technology . 2009,第4期

机译：虚拟组织中基于证书的业务流程可访问性的分布式体系结构
3. SynchroTrace: Synchronization-Aware Architecture-Agnostic Traces for Lightweight Multicore Simulation of CMP and HPC Workloads [J] . Sangaiah Karthik, Lui Michael, Jagtap Radhika, ACM Transactions on Architecture and Code Optimization . 2018,第1期

机译：同步race：同步感知架构 - 用于轻量级多核模拟CMP和HPC工作负载的无效型号
4. DToken: A Lightweight and Traceable Delegation Architecture for Distributed Systems [C] . IEEE Symposium on Reliable Distributed Systems . 2009

机译：dtoken：用于分布式系统的轻量级和可追踪的委派架构
5. A collaborative architecture for distributed intrusion detection system based on lightweight modules [D] . Zaman, Safaa 2009

机译：基于轻量级模块的分布式入侵检测系统的协作架构
6. Lightweight Filter Architecture for Energy Efficient Mobile Vehicle Localization Based on a Distributed Acoustic Sensor Network [O] . Keonwook Kim 2013

机译：基于分布式声传感器网络的高效节能汽车定位轻量化滤波器架构
7. An architecture for practical delegation a distributed system [O] . Morrie Gasser, Ellen Mcdermott 1990

机译：实用委托的体系结构分布式系统

DToken: A Lightweight and Traceable Delegation Architecture for Distributed Systems

摘要

著录项

相似文献

相关主题

期刊订阅