Date of Award
5-2012
Document Type
Thesis
Degree Name
Master of Science (MS)
Legacy Department
Electrical Engineering
Committee Chair/Advisor
Brooks, Richard R
Committee Member
Shen , Haiying
Committee Member
Gemmill , Jill
Abstract
Parallel distributed systems are widely used for dealing with massive data sets and high performance computing. Securing parallel distributed systems is problematic. Centralized security tools are likely to cause bottlenecks and introduce a single point of failure. In this paper, we introduce existing distributed authentication and authorization tools. We evaluate the quality of the security tools by verifying their security and performance.
For security tool verification, we use process calculus and mathematical modeling languages. Casper, Communicating Sequential Process (CSP) and Failure Divergence Refinement (FDR) to test for security vulnerabilities, Petri nets and Karp Miller trees are used to find performance issues of distributed authentication and authorization methods.
Kerberos, PERMIS, and Shibboleth are evaluated. Kerberos is a ticket based distributed authentication service, PERMIS is a role and attribute based distributed authorization service, and Shibboleth is an integration solution for federated single sign-on authentication. We find no critical security and performance issues.
Recommended Citation
Yun, Seok bae, "Security and Performance Verification of Distributed Authentication and Authorization Tools" (2012). All Theses. 1392.
https://open.clemson.edu/all_theses/1392