| 
|
QuoteRef: coxR8_2002
topics >
all references >
Group:
security
Topic:
password protection
Topic:
security by secure domains
Topic:
authentication
Reference
Cox, R., Grosse, E., Pike, R., Presotto, D., Quinian, S., "Security in Plan 9", Proceedings of the 11th USENIX Security Symposium, San Francisco, California, USA, August 2002, pp. 3-16. Google
Notes
page numbers from downloaded preprint 1-19
1 ;;Quote: security concerns user authentication, service authentication, key management, and encryption of communication
2 ;;Quote: the Plan 9 factotum handles the user's keys and security interactions; no cryptographic code in applications; like the SSH agent
5 ;;Quote: a key is a secret and the context for using the secret; e.g., the protocol, user, and other parameters
5+;;Quote: Plan 9 uses plain text keys
7 ;;Quote: after factotum is marked 'private', no secret must escape; process memory is inaccessible and never swapped to disk
7 ;;Quote: require an interactive dialog before unlocking personal accounts; protects against host-resident attacks
7 ;;Quote: can attack Plan 9's factotum by rebooting the server with a debugging kernel
15 ;;Quote: use a encypted data file server to initialize security agent at boot time; uses PAK key exchange; no backup
Group: security (23 topics, 874 quotes)
Topic: password protection (44 items)
Topic: security by secure domains (45 items)
Topic: authentication (93 items)