Using digital certificates for authorization by proxy in os Linux | Applied Discrete Mathematics. Supplement. 2014. № 7.

HomeIssuesUsing digital certificates for authorization by proxy in os Linux | Applied Discrete Mathematics. Supplement. 2014. № 7.

Using digital certificates for authorization by proxy in os Linux

In this paper, a solution for delegation of some set of rights from one user (delegator) to another (proxy user) for a fixed time period is proposed. For this goal, it is offered to use "proxies". "Proxy" is an object containing the following fields: delegator's identifier, proxy user's identifier, time period (set by delegator), list of delegated rights, and delegator's digital signature. This solution is implemented for OS Linux using OpenSSL cryptographic toolkit and pluggable authentication modules (PAM). The object "proxy" is designed as X.509 v3 certificate, and the delegated rights are specified at the field of certificate extensions. Authorization by proxy is implemented as PAM module.

Download file
Counter downloads: 316

Keywords

электронные сертификаты, X.509, Linux, PAM, OpenSSL, electronic certificates, X.509, Linux, PAM, OpenSSL, authorization by proxy

Authors

NameOrganizationE-mail
Ryzhkov V. I.vic.ryzhkov@gmail.com
Всего: 1

References

https://www.ietf.org/rfc/rfc5280.txt - RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile.
http://www.openssl.org/ - OpenSSL: The Open Source toolkit for SSL/TLS.
http://www.linux-pam.org/ - A Linux-PAM page.
Using digital certificates for authorization by proxy in os Linux | Applied Discrete Mathematics. Supplement. 2014. № 7.

Using digital certificates for authorization by proxy in os Linux | Applied Discrete Mathematics. Supplement. 2014. № 7.