Reducing the dependence of SPKI/SDSI on PKI

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 4189 LNCS, Issue , 2006, Pages 156-173

  Wang, Hao ^a   Jha, Somesh ^a   Reps, Thomas ^a   Schwoon, Stefan ^b   Stubblebine, Stuart ^c  

^a UNIVERSITY OF WISCONSIN MADISON   (United States)

^b UNIVERSITY OF STUTTGART   (Germany)

^c Stubblebine Research Labs   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

COPYRIGHTS; DECENTRALIZED CONTROL; DISTRIBUTED COMPUTER SYSTEMS; INFORMATION MANAGEMENT; INFORMATION RETRIEVAL SYSTEMS; PROBLEM SOLVING;

AUTHORIZATION; TRUST-MANAGEMENT SYSTEMS;

PUBLIC KEY CRYPTOGRAPHY;

EID: 33750252806     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11863908_11     Document Type: Conference Paper

References (23)

1. L. Bauer, S. Garriss, and M. K. Reiter. Distributed proving in access-control systems. In Proceedings of the 2005 IEEE Symposium on Security and Privacy, pages 81-95, May 2005.
2. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis. The KeyNote trust-management system version 2. RFC 2704, Sept. 1999.
3. M. Blaze, J. Feigenbaum, J. Ioannidis, and A. Keromytis. The role of trust management in distributed systems security. In Secure Internet Programming: Security Issues for Mobile and Distributed Objects, pages 185-210, 1999.
4. J. Brezak. Utilizing the Windows 2000 authorization data in Kerberos tickets for access control to resources. http://msdn.microsoft.com/library/ default.asp?myurl=/library/enus/dnkerb/html/MSDN_PAC.asp.
5. D. Caucal. On the regular structure of prefix rewriting. Theoretical Computer Science, 106(1):61-86, 1992.
6. CITI: Projects. Kerberos leveraged PKI. http://www.citi.umich.edu/ projects/kerb.pki/.
7. D. Clarke, J.-E. Elien, C. M. Ellison, M. Fredette, A. Morcos, and R. L. Rivest. Certficate chain discovery in SPKI/SDSI. Journal of Computer Security, 9(1/2):285-322, 2001.
8. D. Davis and R. Swick. Network security via private-key certificates. In Proceedings of the 3rd USENIX Security Symposium, September 1992.
9. C. M. Ellison, B. Frantz, B. Lampson, R. Rivest, B. Thomas, and T. Ylönen. RFC 2693: SPKI Certificate Theory. The Internet Society, September 1999.
10. European Computer Manufacturers Association (ECMA). Secure European system for applications in a multi-vendor environment (SESAME). https://www.cosic.esat.kuleuven.ac.be/sesame/html/sesame_documents.html.
11. J. Howell and D. Kotz. A formal semantics for SPKI. Technical Report 2000-363, Department of Computer Science, Dartmouth College, Hanover, NH, Mar. 2000.
12. M. Hur, B. Tung, T. Ryutov, C. Neuman, A. Medvinsky, G. Tsudik, and B. Sommerfeld. Public key cryptography for cross-realm authentication in Kerberos, Nov. 2001. Internet-Draft, draft-ieft-cat-kerberos-pk-cross-08.txt.
13. S. Jha and T. Reps. Model checking SPKI/SDSI. Journal of Computer Security, 12(3-4):317-353, 2004.
14. S. Jha, S. Schwoon, H. Wang, and T. Reps. Weighted pushdown systems and trust-management systems. In TACAS, 2006.
15. O. Kornievskaia, P. Honeyman, B. Doster, and K. Coffman. Kerberized credential translation: A solution to web access control. In 10th USENIX Security Symposium, pages 235-250, 2001.
16. B. Lampson, M. Abadi, M. Burrows, and E. Wobber. Authentication in distributed systems: Theory and practice. ACM Transactions on Computer Systems, 10(4):265-310, 1992.
17. J. Linn and M. Branchaud. An examination of assorted PKI issues and proposed alternatives. In Proceedings of the 3rd Annual PKI R&D Workshop, April 2004.
18. B. C. Neuman. Proxy-based authorization and accounting for distributed systems. In ICDCS, pages 283-291, 1993.
19. B. C. Neuman and T. Ts'o. Kerberos: An authentication service for computer networks. IEEE Communications Magazine, 32(9):33-38, September 1994.
20. S. Schwoon, S. Jha, T. Reps, and S. Stubblebine. On generalized authorization problems. In Proceedings of the 16th IEEE Computer Security Foundations Workshop (CSFW), pages 202-218. IEEE Computer Society, June 2003.
21. M. Sirbu and J. Chuang. Distributed authentication in Kerberos using public key cryptography, Feb. 1997.
22. The Open Group. DCE 1.1: Authentication and security services. http://www.opengroup.org/onlinepubs/9668899/.
23. B. Tung, C. Neuman, M. Hur, A. Medivinsky, S. Medvinsky, J. Wray, and J. Trostle. Public key cryptography for initial authentication in Kerberos, 2004. Internet-Draft, draft-ieft-cat-kerberos-pk-init-17.txt.