Modeling public key infrastructures in the real world

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3545 LNCS, Issue , 2005, Pages 118-134

  Marchesini, John ^a   Smith, Sean ^a  

^a Dartmouth College   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COMPLEX DISTRIBUTED SYSTEMS; KEY-HOLDER; PUBLIC KEY INFRASTRUCTURES; TRUST JUDGMENTS;

COMPUTER SIMULATION; DECISION MAKING; DISTRIBUTED COMPUTER SYSTEMS; MATHEMATICAL MODELS;

PUBLIC KEY CRYPTOGRAPHY;

EID: 33646061645     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11533733_8     Document Type: Conference Paper

References (26)

1. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis. The KeyNote Trust-Management System, version 2. IETF RFC 2704, September 1999.
2. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis. The Role of Trust Management in Distributed Systems. Secure Internet Programming, 1603:185-210, 1999. Lecture Notes in Computer Science.
3. D. Chadwick, A. Otenko, and E. Ball. Role-Based Access Control with X.509 Attribute Certificates. IEEE Internet Computing, March-April 2003.
4. D. Cooper. A Model of Certificate Revocation. In 15th Annual Computer Security Applications Conference (ACSAC '99), pages 256-264, Phoenix, Arizona, USA, December 1999. IEEE Computer Society.
5. C. Ellison. The nature of a usable pki. Computer Networks, pages 823-830, 1999.
6. C. Ellison. Improvements on Conventional PKI Wisdom. In Proceedings of the 1st Annual PKI Research Workshop, April 2002.
7. C. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylonen. SPKI Certificate Theory. IETF RFC 2693, September 1999.
8. S. Farrell and R. Housley. An Internet Attribute Certificate Profile for Authorization. IETF RFC 3281, April 2002.
9. N. Goffee, S. Kim, S.W. Smith, P. Thylor, M. Zhao, and J. Marchestni. Greenpass: Decentralized, PKI-based Authorization for Wireless LANs. In 3rd Annual PKI Research and Development Workshop. NIST, April 2004.
10. R. Housley, W. Polk, W. Ford, and D. Solo. Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. IETF RFC 3280, April 2002.
11. J. Howell and D. Kotz. A formal semantics for SPKI. In Proceedings of the Sixth European Symposium on Research in Computer Security (ESORICS 2000), volume 1895 of Lecture Notes in Computer Science, pages 140-158. Springer-Verlag, October 2000.
12. P. Kocher. On Certificate Revocation and Validation. In Proceedings of the Second International Conference on Financial Cryptography (FC'98), volume 1465 of LNCS, pages 172-177. Springer-Verlag, 1998.
13. R. Kohlas and U. Maurer. Reasoning About Public-Key Certification: On Bindings Between Entities and Public Keys. Journal on Selected Areas in Communications, pages 551-560, 2000.
14. N. Li, B. Grosof, and J. Feigenbaum. Delegation logic: A logic-based approach to distributed authorization. ACM Transactions on Information and System Security (TISSEC), 6(1):128-171, February 2003.
15. N. Li and Feigenbaum J. Nonmonotonicity, User Interfaces, and Risk Assessment in Certificate Revocation. In Proceedings of the 5th International Conference on Financial Cryptography, pages 166-177. Springer-Verlag, 2002.
16. N. Li, W. Winsborough, and J. Mitchell. Beyond Proof-of-compliancc: Safety and Availability Analysis in Trust Management. In Proceedings of 2003 IEEE Symposium on Security and Privacy, pages 123-139. IEEE Computer Society Press, May 2003.
17. M. Blaze and J. Feigenbaum and J. Lacy. Decentralized trust management. In Proceedings of the 1996 IEEE Symposium on Security and Privacy, pages 164-173. IEEE Computer Society Press, May 1996.
18. M. Blaze and J. Feigenbaum and M. Strauss. Compliance-checking in the PolicyMaker Trust Management System. In Proceedings of Second International Conference on Financial Cryptography (FC '98), volume 1465, pages 254-274, 1998.
19. A. Malpani, S. Galperin, M. Mayers, R. Ankney, and C. Adams. X.509 Internet Public Key Infrastructure Online Certificate Status Protocol. RFC2560, http://www.ietf.org/rfc/rfc2560.txt, June 1999.
20. U. Maurer. Modelling a Public-Key Infrastructure. In ESORICS. Springer-Verlag LNCS, 1996.
21. M. Naor and K. Nissim. Certificate Revocation and Certificate Update. IEEE Journal on Selected Areas in Communications, 18(4):561-570, April 2000.
22. J. Novotny, S. Tueke, and V. Welch. An Online Credential Repository for the Grid: MyProxy. In Proceedings of the Tenth International Symposium on High Performance Distributed Computing (HPDC-10). IEEE Press, August 2001.
23. S.W. Smith. Outbound Authentication for Programmable Secure Coprocessors. International Journal on Information Security, 2004.
24. S. Tuecke, V. Welch, D. Engert, L. Pearlman, and M. Thompson. Internet X.509 Public Key Infrastructure Proxy Certificate Profile, http://www.ietf.org/ internet-drafts/draft-ietf-pkix-proxy-10.txt, 2003.
25. S. Weeks. Understanding Trust Management Systems. In Proceedings of 2001 IEEE Symposium on Security and Privacy, pages 94-105. IEEE Computer Society Press, May 2001.
26. V. Welch, I. Foster, C. Kesselman, O. Mulmo, L. Pearlman, S. Tuecke, J. Gawor, S. Meder, and F. Siebenlist. X.509 Proxy Certificates for Dynamic Delegation. In 3rd Annual PKI Research and Development Workshop, April 2004.