Authentication Logic Research Articles

“That's hip-hop to me!”: Race, space, and temporal logics of authenticity in independent cultural production

In producer-saturated fields such as popular music scenes, claims to and judgments of authenticity are ever salient in contention for limited resources and prestige. By mobilizing meanings attributed to sounds, objects, individuals, and ideas associated with the past, present, or future of a genre, cultural producer groups are distinguished from each other and unified within themselves. Observing the dynamics of these distinctions allows us to ascertain how artistic professionals think of themselves and others, as well as begin to unpack the role that authenticity work may play in the practice and warrants of cultural production. Drawing on fieldwork and interviews from an independent rap scene in the Midwest, I demonstrate how artists draw on collective memory, modern convention, and projected futures to form competing, temporally rooted logics of authenticity by which to advance their positions.

Exhibiting repair in twenty-first-century reinstallations of African collections

This article analyses three twenty-first-century reinstallations of African objects in the United States and South Africa that use gallery space to explicitly address and symbolically redress an institutional history of problematic representations of Africa, and by extension, of blackness. Each project has updated its interpretation to reflect black cultural studies scholarship that emphasizes dynamism within diasporas and attempts to intervene on the ways that museums produce knowledge. While each institution has used its African displays to engage local black communities, this paper inverts the notion that appeals to ‘the community’ are intrinsically anti-authoritative and that objects are necessarily static by suggesting the reparative potential in objects and the paradoxical logic of authenticity that undergirds the museological turn to community. Drawing on gallery observations, interviews and visual analysis, the particularities of each approach reveal that it is not the specific curatorial techniques – whether object-based or community-focused – but the relationships encircling those strategies that mediate reception. Offering a museological window into ongoing discussions of how cultural producers/curators and the audiences they presume/produce interface, these case studies signal the centrality of trust to reparative projects and to transforming social relations within the museum and beyond it.

Toward a Transnational African Cinema: Image and Authenticity in <em>La Vie sur terre</em>

This article argues that the use of photography in La Vie sur terre undermines the notion of authenticity with which critics have interpreted postindependence African cinema. Evoking the historical narrative that opposes the repressive and ideologically driven photography and cinema of the colonial period to the authentic, self-directed representations of the liberation era, La Vie seeks to rewrite this history and thus expose as a construction the logic of authenticity that haunts African film. The cinematic image, rather than marking the recovery of an echt -Africanity undermined by colonial ideology, becomes a fundamentally ambiguous signifier capable only of an incomplete referentiality . This ambiguity expresses the transnational foundations of identity so that Cesaire's negritude is rewritten without recourse to essentialist foundations. Through passport photography, La Vie rethinks national identity as an internationally negotiated concept that shifts according to the forces of global capital.

An Efficient Technique for Detection and Prevention of SQL Injection Attack using ASCII Based String Matching

With the rise of the Internet, web applications, such as online banking and web-based email, have become integral to many people's daily lives. Web applications have brought with them new classes of computer security vulnerabilities, such as SQL injection. It is a class of input validation based vulnerabilities. Typical uses of SQL injection leak confidential information from a database, by-pass authentication logic, or add unauthorized accounts to a database. This security prevents the unauthorized access to your database and also it prevents your data from being altered or deleted by users without the appropriate permissions. Malicious Text Detector, Constraint Validation, Query length validation and Text based Key Generator are the four types of filtration technique used to detect and prevent the SQL Injection Attacks from accessing the database

Long-lived authentication protocols for process control systems

Abstract Process control systems that manage critical infrastructures have to be available continuously; they may have nodes that once deployed cannot be easily accessed; and they need to be functional over long periods of time. Since the consequences of critical infrastructure disruptions are potentially serious and since critical infrastructures are under threats ranging from extortion to terrorism, it is vital to keep the security services up to current standards over many years of deployment. The mutual authentication of process control system nodes is a fundamental building block of security. This paper describes authentication protocols for use in long-lived process control systems. The protocols address the issue of longevity by defining, as part of the protocol suites, a means for the cryptographic components of the authentication system to be replaced dynamically and securely. The correctness of the component update protocol is established using an extended version of the Burrows, Abadi and Needham (BAN) authentication logic, which incorporates primitives and rules for reasoning about the belief of the ability of cryptographic modules to maintain secrecy.

Lightweight Secure Roaming Mechanism Between GPRS/UMTS and Wireless LANs

The third generation partner project (3GPP) has standardized general packet radio service (GPRS) and the universal mobile telecommunications system (UMTS) to provide cell phone communications and wireless Internet services. Although the data transmission rate is lower than that of wireless local area networks (WLANs), GPRS/UMTS covers larger areas. Hence, to achieve higher speed ubiquitous access, we propose a lightweight secure roaming mechanism (LSRM) that integrates GPRS/UMTS and WLAN. Taking advantage of these two technologies, LSRM offers anonymous roaming and friendly subscriber management. Besides, we give a formal security analysis to LSRM based on BAN authentication logic.

A PK-SIM card based end-to-end security framework for SMS

Since the first SMS (Short Message Services) message was sent in the UK in 1992, the SMS has become a mass communication tool and has been broadly used in mobile business applications. But the security issue of the SMS has often been considered as a crucial barrier to its application in many fields that need strong authentication and confidentiality, such as mobile-commerce. The Subscriber Identity Module (SIM) inside mobile phones is a tamper resistant device which contains strong authentication mechanism and has been used in remote user authentication system, e.g. WIM 1 1 WAP Identity Module (WIM) is the security module implemented in the SIM card for WAP applications. It is based on the WAP 1.2 specification enabling secure transactions and non-repudiation based on a digital signature. card in Wireless Application Protocol (WAP). In this contribution, we design and realize a secure SIM card, named PK-SIM card, which is a standard SIM card with additional PKI functionality; based on the PK-SIM card, we present a security framework offering solutions for the development of secure mobile business applications using SMS as bearer. The security framework consists of a client device, in which a PK-SIM card is used to store security credentials, a Secure Access Gateway (SAG) which is used to receive and send secure SMS messages, a trusted third-party, Certification Authority (CA), which provides a public-key certification service and a Mobile Operator which provides the communication infrastructure for the SMS. Then we propose an authentication and session key distribution protocol which provides end-to-end security between the PK-SIM card and the SAG, and give a formal security analysis to the proposed protocol based on BAN authentication logic 2 2 Burrows-Abadi-Needham logic (also known as the BAN logic) is a set of rules for defining and analyzing information exchange protocols. Specifically, BAN logic helps its users determine whether exchanged information is trustworthy, secured against eavesdropping, or both. . Lastly, we provide a typical application of the security framework in Mobile Police Information System. The evaluations of the system have proved that the security framework is suitable for actual needs both in speed and security.

Analysis of security protocols based on challenge-response

Security protocol is specified as the procedure of challenge-response, which uses applied cryptography to confirm the existence of other principals and fulfill some data negotiation such as session keys. Most of existing analysis methods, which either adopt theorem proving techniques such as state exploration or logic reasoning techniques such as authentication logic, face the conflicts between analysis p

Proving Possession of Arbitrary Secrets While not Giving them Away: New Protocols and a Proof in GNY Logic

This paper introduces and describes new protocols for proving knowledge of secrets without giving them away: if the verifier does not know the secret, he does not learn it. This can all be done while only using one-way hash functions. If also the use of encryption is allowed, these goals can be reached in a more efficient way. We extend and use the GNY authentication logic to prove correctness of these protocols.

A Quantifier-free First-order Knowledge Logic of Authentication

In this paper we introduce a new, complete and decidable knowledge logic of authentication with a well defined semantics, intended for model checking verification of properties of authentication pr...

The Archive, Disciplinarity, and Governing: Cultural Studies and the Writing of History

This article historicizes the archive as a mechanism of exclusion. It focuses on three archival sites (the development of archival rationalization in the 19th century, national archives and the collecting of government documents, and the discipline of history) to analyze their shared logics of classification, identity, evidence, and authenticity. These three sites are connected through the author’s attempts to research and write a history of the passport within cultural studies. The archive, therefore, provides a site from which to clarify what is at stake in the claims of cultural studies to be an interdisciplinary project.

An authentication logic with formal semantics supporting synchronization, revocation, and recency

Distributed systems inherently involve dynamic changes to the value of security-relevant attributes such as the goodness of encryption keys, trustworthiness of participants, and synchronization between principals. Since concurrent knowledge is usually infeasible or impractical, it is often necessary for the participants of distributed protocols to determine and act on beliefs that may not be supported by the current state of the system. Policies for determining beliefs in such situations can range from extremely conservative, such as only believing statements if they are very recent, to extremely optimistic, such as believing all statements that are not yet known to be revoked. Such security policies often are heavily dependent on timing of received messages and on synchronization between principals. We present a logic for analyzing cryptographic protocols that has the capability to specify time and synchronization details. This capability considerably advances the scope of known techniques both for expressing practical authentication policies of protocol participants as constraints and for reasoning about protocol goals subject to these constraints.

Jikzi — a new framework for security policy, trusted publishing and electronic commerce

In this paper, we will describe a thread of research, which we have followed off and on at Cambridge for about three years. Our topic is the security of electronic documents, in the broad sense: how can we be sure of the authenticity of things that are published electronically? This started off as a relatively small project, which we thought would take only a few weeks. The goal was to help our medical informatics department publish information such as drug formularies and treatment protocols on the hospital LAN or PC diskettes, in an appropriately dependable way. It rapidly became clear that the problem was much larger and more complex; a general solution would not only cope with ‘content’ — text, audio, video, software, whatever — but also with objects such as public key certificates. If done properly, it would give us a systematic way to deal with security policy on the web. Our goal now is to let people build integrated publishing and e-commerce services using simple, uniform and appropriate mechanisms. Our proposed solution is a single transparent markup language that allows us to support multiple security policies, plus supporting material ranging from a test implementation to an authentication logic.

The logic of autonomy and the logic of authenticity

The logic of autonomy and the logic of authenticity

Authentication in the Taos operating system

We describe a design for security in a distributed system and its implementation. In our design, applications gain access to security services through a narrow interface. This interface provides a notion of identity that includes simple principals, groups, roles, and delegations. A new operating system component manages principals, credentials, and secure channels. It checks credentials according to the formal rules of a logic of authentication. Our implementation is efficient enough to support a substantial user community.

Authentication in the Taos operating system

We describe a design and implementation of security for a distributed system. In our system, applications access security services through a narrow interface. This interface provides a notion of identity that includes simple principals, groups, roles, and delegations. A new operating system component manages principals, credentials, and secure channels. It checks credentials according to the formal rules of a logic of authentication. Our implementation is efficient enough to support a substantial user community.

A logic of authentication

Authentication protocols are the basis of security in many distributed systems, and it is therefore essential to ensure that these protocols function correctly. Unfortunately, their design has been extremely error prone. Most of the protocols found in the literature contain redundancies or security flaws. A simple logic has allowed us to describe the beliefs of trustworthy parties involved in authentication protocols and the evolution of these beliefs as a consequence of communication. We have been able to explain a variety of authentication protocols formally, to discover subtleties and errors in them, and to suggest improvements. In this paper we present the logic and then give the results of our analysis of four published protocols, chosen either because of their practical importance or because they serve to illustrate our method.

A logic of authentication

Questions of belief are essential in analysing protocols for the authentication of principals in distributed computing systems. In this paper we motivate, set out, and exemplify a logic specifically designed for this analysis: we show how various protocols differ subtly with respect to the required initial assumptions of the participants and their final beliefs. Our formalism has enabled us to isolate and express these differences with a precision that was not previously possible. It has drawn attention to features of protocols of which we and their authors were previously unaware, and allowed us to suggest improvements to the protocols. The reasoning about some protocols has been mechanically verified. This paper starts with an informal account of the problem, goes on to explain the formalism to be used, and gives examples of its application to protocols from the literature, both with shared-key cryptography and with public-key cryptography. Some of the examples are chosen because of their practical importance, whereas others serve to illustrate subtle points of the logic and to explain how we use it. We discuss extensions of the logic motivated by actual practice; for example, to account for the use of hash functions in signatures. The final sections contain a formal semantics of the logic and some conclusions.

A logic of authentication

Authentication protocols are the basis of security in many distributed systems, and it is therefore essential to ensure that these protocols function correctly. Unfortunately, their design has been extremely error prone. Most of the protocols found in the literature contain redundancies or security flaws. A simple logic has allowed us to describe the beliefs of trustworthy parties involved in authentication protocols and the evolution of these beliefs as a consequence of communication. We have been able to explain a variety of authentication protocols formally, to discover subtleties and errors in them, and to suggest improvements. In this paper, we present the logic and then give the results of our analysis of four published protocols, chosen either because of their practical importance or because they serve to illustrate our method.