Group authentication: A new paradigm for emerging applications

Group authentication: A new paradigm for emerging applications

Traditional secure registration protocols rely on client-server authentication procedures. This concept has been extended to support single client registration to multiple servers, using "single sign-on" protocols. In this paper, we design a framework to solve the "reverse single sign...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Bell Labs technical journal 2012-12, Vol.17 (3), p.157-173
Hauptverfasser: Broustis, Ioannis, Sundaram, Ganapathy S., Viswanathan, Harish
Format: Artikel
Sprache:eng
Schlagworte:
Authentication
Devices
Networks
Protocol (computers)
Registers
Servers
Servers (computers)
Social networks
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
container_end_page 173
container_issue 3
container_start_page 157
container_title Bell Labs technical journal
container_volume 17
creator Broustis, Ioannis
Sundaram, Ganapathy S.
Viswanathan, Harish
description Traditional secure registration protocols rely on client-server authentication procedures. This concept has been extended to support single client registration to multiple servers, using "single sign-on" protocols. In this paper, we design a framework to solve the "reverse single sign-on" problem: How can multiple clients securely register with the same server/network in a single registration procedure? The main advantage of our framework is that it allows multiple clients to register with an infrastructure, such as a cellular network, as a "group," yet generate individual session keys as well as a group session key. With this, the process of authenticating a large number of clients is greatly simplified, thereby dramatically reducing overheads. With a view towards simplifying the exposition, we describe how our framework can be applied for performing group authentication of devices in the machine-to-machine context. While this is an immediate area of application, we outline other extensions of the framework in the application layer including webcasting in a social networking environment. © 2012 Alcatel-Lucent.
doi_str_mv 10.1002/bltj.21566
format Article
fullrecord <record><control><sourceid>proquest_RIE</sourceid><recordid>TN_cdi_crossref_primary_10_1002_bltj_21566</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>6770195</ieee_id><sourcerecordid>1629365525</sourcerecordid><originalsourceid>FETCH-LOGICAL-c3546-72a4c518234052b1c1c55103b2dde32ddc21134a17812ad4bfb8e6e52a4cb9e83</originalsourceid><addsrcrecordid>eNp9kE1Lw0AQhoMoWKsXr14CXkSI7uxXEg9CLVqVgpd6XjbJpG7Jl7sJpf_exFQPHry8M4fnHYbH886B3AAh9DYp2s0NBSHlgTcBwaIgZEQc9juJ4iDs49g7cW5DCEAc8ol3v7B11_i6az-wak2qW1NXd_7Mr3DrN9rqzKxLP6-tjyXatanWvm6aYg-6U-8o14XDs_2ceu9Pj6v5c7B8W7zMZ8sgZYLLIKSapwIiyjgRNIEUUiGAsIRmGbI-UgrAuIYwAqoznuRJhBLFUEtijNjUuxrvNrb-7NC1qjQuxaLQFdadUyBpzKQQVPTo5R90U3e26r9TgxfJGOesp65HKrW1cxZz1VhTartTQNSgUg0q1bfKHoYR3poCd_-Q6mG5ev3pXIwdg4i_FRmGBGLBvgBH6n2s</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>1566633443</pqid></control><display><type>article</type><title>Group authentication: A new paradigm for emerging applications</title><source>IEEE Electronic Library (IEL)</source><creator>Broustis, Ioannis ; Sundaram, Ganapathy S. ; Viswanathan, Harish</creator><creatorcontrib>Broustis, Ioannis ; Sundaram, Ganapathy S. ; Viswanathan, Harish</creatorcontrib><description>Traditional secure registration protocols rely on client-server authentication procedures. This concept has been extended to support single client registration to multiple servers, using "single sign-on" protocols. In this paper, we design a framework to solve the "reverse single sign-on" problem: How can multiple clients securely register with the same server/network in a single registration procedure? The main advantage of our framework is that it allows multiple clients to register with an infrastructure, such as a cellular network, as a "group," yet generate individual session keys as well as a group session key. With this, the process of authenticating a large number of clients is greatly simplified, thereby dramatically reducing overheads. With a view towards simplifying the exposition, we describe how our framework can be applied for performing group authentication of devices in the machine-to-machine context. While this is an immediate area of application, we outline other extensions of the framework in the application layer including webcasting in a social networking environment. © 2012 Alcatel-Lucent.</description><identifier>ISSN: 1089-7089</identifier><identifier>EISSN: 1538-7305</identifier><identifier>DOI: 10.1002/bltj.21566</identifier><identifier>CODEN: BLTJFD</identifier><language>eng</language><publisher>Hoboken: IEEE</publisher><subject>Authentication ; Devices ; Networks ; Protocol (computers) ; Registers ; Servers ; Servers (computers) ; Social networks</subject><ispartof>Bell Labs technical journal, 2012-12, Vol.17 (3), p.157-173</ispartof><rights>2012 Alcatel‐Lucent.</rights><rights>2012 Alcatel-Lucent.</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c3546-72a4c518234052b1c1c55103b2dde32ddc21134a17812ad4bfb8e6e52a4cb9e83</citedby><cites>FETCH-LOGICAL-c3546-72a4c518234052b1c1c55103b2dde32ddc21134a17812ad4bfb8e6e52a4cb9e83</cites></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktopdf>$$Uhttps://onlinelibrary.wiley.com/doi/pdf/10.1002%2Fbltj.21566$$EPDF$$P50$$Gwiley$$H</linktopdf><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/6770195$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>314,778,782,794,1414,27907,27908,45557,45558,54741</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/6770195$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Broustis, Ioannis</creatorcontrib><creatorcontrib>Sundaram, Ganapathy S.</creatorcontrib><creatorcontrib>Viswanathan, Harish</creatorcontrib><title>Group authentication: A new paradigm for emerging applications</title><title>Bell Labs technical journal</title><addtitle>BLTJ</addtitle><description>Traditional secure registration protocols rely on client-server authentication procedures. This concept has been extended to support single client registration to multiple servers, using "single sign-on" protocols. In this paper, we design a framework to solve the "reverse single sign-on" problem: How can multiple clients securely register with the same server/network in a single registration procedure? The main advantage of our framework is that it allows multiple clients to register with an infrastructure, such as a cellular network, as a "group," yet generate individual session keys as well as a group session key. With this, the process of authenticating a large number of clients is greatly simplified, thereby dramatically reducing overheads. With a view towards simplifying the exposition, we describe how our framework can be applied for performing group authentication of devices in the machine-to-machine context. While this is an immediate area of application, we outline other extensions of the framework in the application layer including webcasting in a social networking environment. © 2012 Alcatel-Lucent.</description><subject>Authentication</subject><subject>Devices</subject><subject>Networks</subject><subject>Protocol (computers)</subject><subject>Registers</subject><subject>Servers</subject><subject>Servers (computers)</subject><subject>Social networks</subject><issn>1089-7089</issn><issn>1538-7305</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2012</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNp9kE1Lw0AQhoMoWKsXr14CXkSI7uxXEg9CLVqVgpd6XjbJpG7Jl7sJpf_exFQPHry8M4fnHYbH886B3AAh9DYp2s0NBSHlgTcBwaIgZEQc9juJ4iDs49g7cW5DCEAc8ol3v7B11_i6az-wak2qW1NXd_7Mr3DrN9rqzKxLP6-tjyXatanWvm6aYg-6U-8o14XDs_2ceu9Pj6v5c7B8W7zMZ8sgZYLLIKSapwIiyjgRNIEUUiGAsIRmGbI-UgrAuIYwAqoznuRJhBLFUEtijNjUuxrvNrb-7NC1qjQuxaLQFdadUyBpzKQQVPTo5R90U3e26r9TgxfJGOesp65HKrW1cxZz1VhTartTQNSgUg0q1bfKHoYR3poCd_-Q6mG5ev3pXIwdg4i_FRmGBGLBvgBH6n2s</recordid><startdate>201212</startdate><enddate>201212</enddate><creator>Broustis, Ioannis</creator><creator>Sundaram, Ganapathy S.</creator><creator>Viswanathan, Harish</creator><general>IEEE</general><general>Wiley Subscription Services, Inc., A Wiley Company</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>8FD</scope><scope>JQ2</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope></search><sort><creationdate>201212</creationdate><title>Group authentication: A new paradigm for emerging applications</title><author>Broustis, Ioannis ; Sundaram, Ganapathy S. ; Viswanathan, Harish</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c3546-72a4c518234052b1c1c55103b2dde32ddc21134a17812ad4bfb8e6e52a4cb9e83</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2012</creationdate><topic>Authentication</topic><topic>Devices</topic><topic>Networks</topic><topic>Protocol (computers)</topic><topic>Registers</topic><topic>Servers</topic><topic>Servers (computers)</topic><topic>Social networks</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Broustis, Ioannis</creatorcontrib><creatorcontrib>Sundaram, Ganapathy S.</creatorcontrib><creatorcontrib>Viswanathan, Harish</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics &amp; Communications Abstracts</collection><collection>Technology Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts – Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>Bell Labs technical journal</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Broustis, Ioannis</au><au>Sundaram, Ganapathy S.</au><au>Viswanathan, Harish</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>Group authentication: A new paradigm for emerging applications</atitle><jtitle>Bell Labs technical journal</jtitle><stitle>BLTJ</stitle><date>2012-12</date><risdate>2012</risdate><volume>17</volume><issue>3</issue><spage>157</spage><epage>173</epage><pages>157-173</pages><issn>1089-7089</issn><eissn>1538-7305</eissn><coden>BLTJFD</coden><abstract>Traditional secure registration protocols rely on client-server authentication procedures. This concept has been extended to support single client registration to multiple servers, using "single sign-on" protocols. In this paper, we design a framework to solve the "reverse single sign-on" problem: How can multiple clients securely register with the same server/network in a single registration procedure? The main advantage of our framework is that it allows multiple clients to register with an infrastructure, such as a cellular network, as a "group," yet generate individual session keys as well as a group session key. With this, the process of authenticating a large number of clients is greatly simplified, thereby dramatically reducing overheads. With a view towards simplifying the exposition, we describe how our framework can be applied for performing group authentication of devices in the machine-to-machine context. While this is an immediate area of application, we outline other extensions of the framework in the application layer including webcasting in a social networking environment. © 2012 Alcatel-Lucent.</abstract><cop>Hoboken</cop><pub>IEEE</pub><doi>10.1002/bltj.21566</doi><tpages>17</tpages></addata></record>
fulltext fulltext_linktorsrc
identifier ISSN: 1089-7089
ispartof Bell Labs technical journal, 2012-12, Vol.17 (3), p.157-173
issn 1089-7089
1538-7305
language eng
recordid cdi_crossref_primary_10_1002_bltj_21566
source IEEE Electronic Library (IEL)
subjects Authentication
Devices
Networks
Protocol (computers)
Registers
Servers
Servers (computers)
Social networks
title Group authentication: A new paradigm for emerging applications
url https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-17T02%3A11%3A46IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=Group%20authentication:%20A%20new%20paradigm%20for%20emerging%20applications&rft.jtitle=Bell%20Labs%20technical%20journal&rft.au=Broustis,%20Ioannis&rft.date=2012-12&rft.volume=17&rft.issue=3&rft.spage=157&rft.epage=173&rft.pages=157-173&rft.issn=1089-7089&rft.eissn=1538-7305&rft.coden=BLTJFD&rft_id=info:doi/10.1002/bltj.21566&rft_dat=%3Cproquest_RIE%3E1629365525%3C/proquest_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=1566633443&rft_id=info:pmid/&rft_ieee_id=6770195&rfr_iscdi=true