Lightweight Failure Detection in Secure Group Communication

Lightweight Failure Detection in Secure Group Communication (2000)

Cached

Download Links

by Patrick Mcdaniel , Atul Prakash

Citations:

BibTeX

@TECHREPORT{Mcdaniel00lightweightfailure,
    author = {Patrick Mcdaniel and Atul Prakash},
    title = {Lightweight Failure Detection in Secure Group Communication},
    institution = {},
    year = {2000}
}

Bookmark

OpenURL

Abstract

The secure and efficient detection of process failures is an essential requirement of many distributed systems. In this paper, we present the design and analysis of a mechanism used for the detection of member failures in secure groups. Based on one-time passwords, our solution does not obviate the need for periodic statements from group members, but significantly reduces the cost of their generation and validation. A study comparing the costs of traditional mechanisms with our proposed approach is presented. Results of the study indicate the average case performance of the proposed scheme is ¤¦¥§¤©¨�� of traditional failure detection in trusted groups, and negligible in the untrusted groups. A discussion of security and performance tradeoffs made through mechanism policy is provided. 1

Citations

2507	A method for obtaining digital signatures and public-key cryptosystems - Rivest, Shamir, et al.
900	Applied Cryptography - Schneier - 1996
579	Cryptography – Theory and Practice - Stinson - 2006
501	The process group approach to reliable distributed computing - Birman - 1993
385	Horus: A flexible group communication system - Renesse, Birman, et al. - 1996
361	Secure group communications using key graphs - Wong, Gouda, et al. - 1998
307	Password authentication with insecure communication - Lamport
225	The Transis approach to high availability cluster communication - Dolev, Malki - 1996
216	Iolus: A framework for scalable secure multicasting - Mittra - 1997
172	The S/KEY One-Time Password System - Haller - 1994
162	Secure agreement protocols: Reliable and atomic group multicast in Rampart - Reiter - 1994
116	Distributed Systems - Mullender
116	How to sign digital streams - Gennaro, Rohatgi - 1997
107	Digital Signatures for Flows and Multicasts - Wong, Lam - 1999
105	Cliques: A new approach to group key agreement - Steiner, Waidner, et al. - 1998
69	A compact and fast hybrid signature scheme for multicast packet authentication - Rohatgi - 1999
49	Antigone: A Flexible Framework for Secure Group Communication - McDaniel, Prakash, et al. - 1999
45	HMAC: Keyed-Hashing for Message Authentication,” Internet RFC 2104 - Krawczyk, Bellare, et al. - 1997
37	Renesse. Packing Messages as a Tool for Boosting the Performance of Total Ordering Protocols - Friedman, van - 1997
33	The MD5 Message Digest Algorithm, Internet Request for Comments, RFC 1321 - Rivest - 1992
27	Independent one-time passwords - Rubin - 1995
27	Efficient Authentication and Signature of Multicast Streams over Lossy Channels - Perrig, Canetti, et al. - 2000
25	Zero side effect multicast key management using arbitrarily revealed key sequences - MARKS - 1999
24	Ensemble security - Rodeh, Birman, et al. - 1998
20	A response to “Can we eliminate certificate revocation lists - MCDANIEL, A - 1962
9	Fine-grain configurability for secure communication - Hiltunen, Jaiprakash, et al. - 2000
5	The S/KEY TM one-time password system - Haller - 1994