Authentication Service Model Supporting Multiple Domains in Distributed Computing

In this paper, based on CORBA security service specification[1, 3], we propose the authentication service model supporting multiple domains for distributed computing with an extension to the Kerberos[13] authentication framework using public key cryptosystem[15]. This proposed model supports the protection of the high-level resources and the preservation of the security policies of the underlying resources that form the foundation of various domains, between the Kerberized domains[14] and the Non-Kerberized domains. Also we achieved the flexibility of key management and reliable session key generation between the Client and the Provider using the public key cryptosystem.