CODEX
Details
| Size: | 307K |
| Last Update: | 2008-05-18 22:06:26 |
| Version: | 1.1 |
| OS Support: | Linux |
| License/Program Type: | BSD License |
| Publisher: | Michael A. Marsh |
| Price: | $0.00 |
Description:
CODEX 1.1 is networking software developed by Michael A. Marsh.
CODEX is a software designed for applications with a moderate number of clients requesting authentication keys
When designing secure applications, it is not uncommon to assume some out-of-band mechanism for distributing keys or other secrets. Other applications without inherent security features could, given a key distribution system, employ symmetric key encryption to add a cryptographic access control mechanism. These applications motivated the development of the CODEX (the Cornell Data Exchange) key distribution system. CODEX is designed for applications with a moderate number of clients (tens or hundreds) requesting keys that change often but not continuously (on the scale of minutes to hours).
CODEX is an moving forward from the ideas implemented in COCA. It employs the RSA and ElGamal encryption schemes, as well as techniques such as threshold cryptography and proactive secret sharing. The COCA page contains a number of useful links for these topics.
Part of the development of CODEX was the creation of a general-purpose toolkit for the various primitives needed by the system. These primitives are discussed in the Implementation section, and the full source code is also available.
Since a random search on Google revealed that this project is now listed on Freshmeat, it is worth mentioning a few significant aspects of the implementation. First, the code is research-quality, not production-quality. The system employs spin-waiting, which can substantially impact the host on which a server runs. For an effective proactive-recovery system, servers must periodically be placed into a known-good state.
This typically involves rebooting from clean (and, if necessary, patched) media and installing new server-specific public/private key pairs, as well as the proactive secret sharing procedure included in the implementation. If, at this point, you still trust the implementation and your operating system enough to use CODEX, be advised that there is currently no credentials mechanism in place.
The existing policy object always accepts any credentials object as valid. Since the entire system depends on enforcing policies for access control, if you want to deploy a CODEX system (as opposed to using the libraries to build your own system) you must implement an actual policy/credentials mechanism.
CODEX 1.1 supports different languages (including english). It works with Linux.
Downloading CODEX 1.1 will take several seconds if you use fast ADSL connection.
0 comments
Add to
CODEX Version History
| Product |
Date Added |
| CODEX 1.1 |
2008-05-18 22:06:26 |
Related Software
|
|
From category: System-Administration |
| SlackRoll project is a package or update manager for Slackware systems.... |
|
|
From category: Monitoring |
| Bacula SNMP Subagent 1.4 is monitoring software developed by Turbo Fredriksson. Bacula SNMP Subagent project provides indexed Bacula statistics via SNMP output. Data, query, and graph templ... |
|
|
From category: Networking |
| alived 0.3.0 is networking software developed by Kris Foster. alived is a simple daemon and client for sending keepalive messages. The server keeps a list of hostname to IP address, useful for when... |
|
|
From category: Networking |
| eznet 1.11 is networking software developed by D. Richard Hipp. Eznet makes setting up PPP for Linux easy. Just enter the name of your ISP, a phone number to dial, the login name, the password and... |
|
|
From category: Monitoring |
| eics 3.1c is monitoring software developed by Aki Tossavainen. EICS is a tripwire like filesystem integrity checking utility. You configure the compilation by typing ./configure. This will i... |
|
|
From category: Archiving |
| flexbackup 1.2.1 is archiving software developed by Paul Holcomb. flexbackup is for you if you have a single or small number of machines, amanda is \"too much\", and tarring things up by hand isn\'... |
|
|
From category: Operating-Systems-Linux-Distri |
| cs.edu Slax Live 0.1 Alpha is operating systems linux distri software developed by Sylvain Schmitz. cs.edu Slax Live is a LiveCD for Computer Science Students. The cs.edu edition of the Slax... |
|
|
From category: Operating-Systems |
| The Realtime Application Interface for Linux allows applications with strict timing constraints to be run on Linux.... |
|
|
From category: Monitoring |
| DS1624 parallel port thermometer 0.4 is monitoring software developed by Fabrizio Fiorucci. DS1624 parallel port thermometer is a simple driver for a thermometer device based on DS1624 and connecte... |
|
|
From category: Networking |
| dirwall 0.11 is networking software developed by Thor Kooda. dirwall is a small iptables firewall script that keeps the iptables rules separate from the script. The rules are stored in separate fil... |
|
|
From category: Networking |
| Ethane 0.1 is networking software developed by Cristian Tuduce. Ethane is the easy way to thrive ad hoc network. With ease of use and minimal system changes in mind, it provides four small software... |
|
|
From category: Shells |
| eltclsh 1.5 is shells software developed by Anthony Mallet. eltclsh (editline tcl shell) is an interactive shell for the TCL programming language. It provides command line editing, history browsing... |
|
|
From category: Hardware |
| fglrxKonf 0.8 is hardware software developed by Donatas Glodenis. fglrxKonf is a Kommander frontend for ATI fglrx video card driver utility \"aticonfig\". It can be used to configure the ne... |
Leave a comment