
	Where results make sense

Topic: Key authentication

Related Topics

ID based cryptography

Key size

Brute force attack

Data Encryption Standard

Feistel network

Hampton Roads

Independent city

Williamsburg, Virginia

Virginia

James City County, Virginia

Bazooka

In the News (Thu 3 Dec 09)

Northern Trust

Marvin Harrison

Peter Chernin

Gary Locke

Match Play

Penelope Cruz

Mickey Rourke

AR Rahman

Danny Boyle

Hugh Jackman

	RFC 2845 (rfc2845) - Secret Key Transaction Authentication for DNS (TSIG) (Site not responding. Last check: 2007-10-21)
		Such keys must be protected in a fashion similar to private keys, lest a third party masquerade as one of the intended parties (forge MACs).
		Where a key is just shared between two hosts, its name actually only need only be meaningful to them but it is recommended that the key name be mnemonic and incorporate the resolver and server host names in that order.
		Key error handling If an RCODE on a response is 9 (NOTAUTH), and the response TSIG validates, and the TSIG key is different from the key used on the request, then this is a KEY error.
	www.faqs.org /rfcs/rfc2845.html (3815 words)

	RSA key authentication (Site not responding. Last check: 2007-10-21)
		Generally, each user has a different key for every system he is on, but frequently, if he has multiple trusted hosts, it can be more convenient to use the same key on all the systems to simplify things.
		Any host to which the user wants to connect must be aware of his public RSA key, as the server uses it during the authentication process.
		The user's private key is a very sensitive piece of data - with it, anyone can connect to any host on which the corresponding public key is in the authorized_keys.
	www.runslinux.net /tech/ssh/node5.html (347 words)

	SSH Overview - Public Key Authentication
		Public key authentication is one of the most secure methods to authenticate using Secure Shell.
		Both keys in the pair are generated at the same time and, while the two are related, a private key cannot be computed from a corresponding public key.
		Usually the private key has a "passphrase" associated with it, so even if the private key is stolen, the attacker must still guess the passphrase in order to gain access.
	www.vandyke.com /solutions/ssh_overview/ssh_overview_publickey.html (239 words)

	RE: Shared Key Authentication for the TLS Protocol-- an Alternative (Site not responding. Last check: 2007-10-21)
		These protocols already involve the exchange of long keys for message authentication, and those same keys can be used (without the legal restraints associated with encryption) to provide very strong protection for shared-key-based challenge-response authentications, provided that the mechanism used cannot be diverted for use as a strong encryption method.
		Note that if the shared key is password-based, then it would typically be derived from the password using a one-way cryptographic hash function, rather than being the password itself, so that the original password need not be remembered by anyone but the client.
		Pass-through Authentication In some circumstances, it is preferable for shared keys to be stored in one place (a central, well-protected site, for instance) while servers that actually communicate with clients are elsewhere (possibly widely distributed, but maintaining secure connections to the central shared- key server).
	lists.w3.org /Archives/Public/ietf-tls/msg00557.html (2930 words)

	FIPS 196 - Entity Authentication Using Public Key Cryptography (Site not responding. Last check: 2007-10-21)
		The authentication protocols are independent of the nature of the authenticating entities (e.g., for mutual authentication, the same protocol is used for human-human, human-process, and process-process authentication).
		The authentication of an entity (viz., a claimant to a verifier) depends on two successful actions: (1) the verification of the claimant's binding with its public/private key pair, and (2) the verification of the claimant's digital signature on a random number challenge.
		Delegation keys are keys issued by one entity to let another entity act upon the issuer's behalf; login tickets are generated by a third party, and used by one entity to authenticate to another.
	www.itl.nist.gov /div897/pubs/fip196.htm (11983 words)

	[No title]
		In this mode, the nonce is still encrypted using the public key of the peer, however the peer's identity (and the certificate if it is sent) is encrypted using the negotiated symmetric encryption algorithm (from the SA payload) with a key derived from the nonce.
		For situations where the amount of keying material desired is greater than that supplied by the prf, KEYMAT is expanded by feeding the results of the prf back into itself and concatenating results until the required keying material has been reached.
		Authentication is assured by the use of a negotiated method: a digital signature algorithm; a public key algorithm which supports encryption; or, a pre-shared key.
	www.ietf.org /rfc/rfc2409.txt (7987 words)

	Common threads: OpenSSH key management, Part 1
		While the key-based authentication protocols are relatively secure, problems arise when users take certain shortcuts in the name of convenience, without fully understanding their security implications.
		The private key is the one thing that grants us access to our remote systems, and anyone that possesses our private key is granted exactly the same privileges that we are.
		key authentication, so RSA should work with any version of OpenSSH, although I recommend that you install the most recent version available, which was openssh-2.9_p2 at the time this article was written.
	www-128.ibm.com /developerworks/linux/library/l-keyc.html (2319 words)

	US-CERT Vulnerability Note VU#786900
		SSH host key authentication can be bypassed when DNS is used to resolve localhost
		In most SSH clients, users are asked to confirm the acceptance of a host key the first time it is presented.
		If the user accepts the host key, they are asserting that the key represents the host they intended to connect to.
	www.kb.cert.org /vuls/id/786900 (221 words)

	Advanced FreeS/WAN configuration
		Authentication with a public key method such as RSA has some important advantages over using shared secrets.
		Generally, automatic keying is preferred over manual keying for production use because it is both easier to manage and more secure.
		The chances of the key being compromised in some non-cryptographic manner -- a spy finds it on a discarded notepad, someone breaks into your server or your building and steals it, a staff member is bribed, tricked, seduced or coerced into revealing it, etc. -- also increase over time.
	www.freeswan.org /freeswan_snaps/CURRENT-SNAP/doc/adv_config.html (6697 words)

	SSH Authentication - Using Key-Pairs \| ITS
		Public key authentication is based on the use of digital signatures.
		One of these key files is the user's public key, and the other is the user's private key.
		Therefore it is extremely important that you keep your private key file in a secure place and make sure that no one else has access to it.
	www.colorado.edu /its/docs/authenticate/ssh-keys.html (310 words)

	SSH public key authentication on re-design my website on 43 Things
		So-called “public key authentication” is one way to end this struggle and work more effectively.
		Public key authentication is based on asymmetric cryptography principles – this way a user is authenticated by a pair of keys: public, which is not secret, and private, known only to user.
		Private key shall be kept, ahem, private and public key is going to be uploaded to all your remote servers to provide authentication.
	www.43things.com /entries/view/25822 (1026 words)

	uk-dave.com - Tutorials - Linux - SSH Public Key Authentication (Site not responding. Last check: 2007-10-21)
		Public key authentication allows you to create a secure connection to a remote server without the need for passwords.
		This is due to the keys from one client being incompatible with keys from the other.
		Remember to tell SSH to use your key when connecting to the server instead of using passwords or you may not be able to connect.
	www.uk-dave.com /tutorials/linux/sshkeys.php (410 words)

	Public Key Authentication Problems (Site not responding. Last check: 2007-10-21)
		key pair generated will not work if the remote server only supports the old version 1 protocol.
		If the server is not running OpenSSH, the documentation for that server will need to be consulted to see whether it supports public key authentication and if so how the public key needs to be stored on the server.
		By default, public key authentication is usually enabled.
	cfm.gs.washington.edu /security/ssh/client-pkauth/problems (410 words)

	Using public keys for SSH authentication
		Public key authentication is an alternative means of identifying yourself to a login server, instead of typing a password.
		In conventional password authentication, you prove you are who you claim to be by proving that you know the correct password.
		Exporting a key works exactly like saving it (see section 8.2.8) - you need to have typed your passphrase in beforehand, and you will be warned if you are about to save a key without a passphrase.
	the.earth.li /~sgtatham/putty/0.55/htmldoc/Chapter8.html (3227 words)

	XP Key Authentication disabled Office 2003 (Site not responding. Last check: 2007-10-21)
		However, after doing the XP key authentication, this processed disabled the product activation for Office 2003 that had been running fine in XP Pro SP2.
		Authentication is not manditory (at least not yet), although the MS download pages try to fool you into believing it is. Apparently they
		I read that if you authenticate your XP key, your downloads are faster than normal as the file downloads from another set of servers.
	ms-os.com /showthread.php?t=2447 (2482 words)

	Configuring OpenSSH (Win32) for Public Key Authentication (Site not responding. Last check: 2007-10-21)
		It supports all major encryption and authentication standards, and permits SSH tunnelling (which is what got me into this mess to begin with).
		Once password based authentication is working for that acct, you log in to the server as that acct.
		I generated the keys at work, e-mailed the public key to myself and when I got it at home, edited it and added it to my file and restarted the service.
	bmonday.com /articles/653.aspx (3564 words)

	Strategies for the Implementation of a Public Key Authentication Framework (PKAF) in Australia
		Standards Australia formed the Public Key Authentication Framework (PKAF) Task Group to examine all options for operating a national system for the creation and management of digital signatures as well as being compatible with systems in other countries.
		This is in line with activities, both in Australia and overseas, to separate authentication techniques from encryption techniques.
		Public/private key cryptography is widely recognized as the enabling technology for authentication within a globally dispersed environment.
	www.acs.org.au /president/1996/epubs/pkaf.htm (556 words)

	Macintosh Systems - More on learning "Public Key Authentication" (Site not responding. Last check: 2007-10-21)
		private key are decrypted with the public key and vice versa.
		public key will decrypt the message, verifying that you were the author.
		The key pair is used to insure that a message was actually
	devplug.com /ftopic68023-0-asc-45.htm (4418 words)

	WinSCP public key authentication (Site not responding. Last check: 2007-10-21)
		The following steps detail how to use public key authentication with WinSCP on an OpenSSH server.
		Copy-and-paste the public key in Public key for pasting into OpenSSH authorized_keys2 file: into the ~UNIX_ID/.ssh/authorized_keys file on the OpenSSH server.
		You will be prompted for your private key passphrase, unless you have already added your private key to the Pageant ssh agent.
	www.brandonhutchinson.com /WinSCP_public_key_authentication.html (121 words)

	Quick SSH Public Key Authentication
		While reading "Linux Security Cookbook", Section 6.4 entitled "Authentication by Public Key (OpenSSH Client, SSH2 Server, OpenSSH Key) I realized a huge shortcut to the proceedure outlined in the book, using the power of pipes and redirects.
		Generating a key can be done exactly how te book outlines it:
		But copying the public key to the remote system can be done in a single, simple step
	hacks.oreilly.com /pub/h/384 (193 words)

	SSH Public-Key Authentication HOWTO
		This document describes how to set up SSH public-key authentication to connect to both OpenSSH and SSH.com SSH servers from machines running Windows with PuTTY, Unix with OpenSSH, and Unix with SSH.com SSH.
		SSH public-key authentication lets you use one identity (i.e.
		to add the private key to the authentication agent.
	hkn.eecs.berkeley.edu /~dhsu/ssh_public_key_howto.html (322 words)

	RE: SSH key authentication
		I am able to use password authentication with no
		I am using all defaults for the ssh_config file for the client.
		RE: SSH key authentication Lewars, Mitchell (CAP, PTL)
	www.mail-archive.com /ssh@clinet.fi/msg06885.html (115 words)

	Key Authentication
		It has plagued us on every single install, on every single machine.
		Is their some sort of key authentication problem in this new version of SSH?
		Any other use, retention, dissemination, forwarding, printing, or copying of this e-mail is strictly prohibited.
	www.mail-archive.com /ssh@clinet.fi/msg05026.html (121 words)

	Jacques Marneweck's Blog: Type Key Authentication on PHP
		There is a decent implementation for authentication using Type Key which you can download a copy of the Auth_Typekey which Daiji Hriata wrote.
		Looks way better than the PECL module called Auth_Typekey which I've been developing in my free...
		Looks way better than the PECL module called Auth_Typekey which I've been developing in my free time which is quite nasty c code seeing that I fortunately don't develop c code as part of my day job!
	www.powertrip.co.za /blog/archives/000274.html (209 words)

	SSH Public-Key Authentication (Site not responding. Last check: 2007-10-21)
		"To set up public-key authentication in your account on an SSH server machine, you create an authorization file, typically called authorized_keys (SSH1, OpenSSH/1), authorized_keys2 (OpenSSH/2), or authorization (SSH2), and list the keys that provide access to your account.
		Your authorization file can contain not only keys but also other keywords or options to control the SSH server in powerful ways."
		Welcome to the Jumble - J2EE best practices
	rootprompt.org /article.php3?article=4478 (105 words)

Try your search on: Qwika (all wikis)