CALL FOR PAPERS Fourth ACM WORKSHOP ON ROLE-BASED ACCESS CONTROL Date: Oct. 28-29, 1999 Place: George Mason University url: www.list.gmu.edu/rbac Sponsored By:...
jaegert@...
Feb 3, 1999 6:05 pm
644
Does anyone know of an FTP site outside the USA that carries the SDSI 2.0 sources, and whether I'd be breaking any laws in fetching them from there if so? I'd...
Paul Crowley
paul@...
Feb 17, 1999 6:39 am
645
... My reading of the latest Wasenaar (sp?) agreement is that authentication only systems are completely de-controlled. As such, unless you are in one of the...
Bill Frantz
frantz@...
Feb 19, 1999 7:36 am
646
Well the simple solution to making an exportable SPKI toolkit seems to be to code my own, and the easiest way to do it seems to be Perl. So far I've written a...
Paul Crowley
paul@...
Feb 20, 1999 6:23 pm
647
... Hmm, are you sure that Wassenaar allows export of sources? If memory serves correctly, only binary code is granted export if it meets the criteria. -- ...
Dean Povey
povey@...
Feb 22, 1999 5:15 am
648
... I've been working on the theory that source, being more like speech than object code, is certainly exportable if object code is. I didn't see anything in...
Bill Frantz
frantz@...
Feb 22, 1999 8:54 am
649
... Like a lot of Wassenaar, what is and isn't controlled is whatever your government says is or isn't controlled. In particular, source code can be ...
Peter Gutmann
pgut001@...
Feb 22, 1999 10:30 am
650
All the security infrastructures being developed (PKIX, DNSSEC, IPSEC, and even SPKI) show that it is not easy to build security structures with links into the...
Bob Smart
Bob.Smart@...
Feb 22, 1999 4:34 pm
651
Bob, See: http://www.garlic.com/~lynn/ Lynn Wheeler has looked at this alot for financial applications. Bob Geiger Motorola...
Bob Geiger
geiger@...
Feb 22, 1999 8:14 pm
652
X9.59 is the financial industries draft standard for all account based financial transactions. there is a pointer to the X9a10 mailing list archive where draft...
Lynn.Wheeler@...
Feb 24, 1999 8:15 pm
653
Hi, I am looking for Carl M. Ellison. I have a couple of questions. I have read some of his stuff on identity certificates and I like it. Now I am writing an...
Gunther Schadow
schadow@...
Mar 13, 1999 2:24 am
654
... Hash: SHA1 Gunther, you found me. I don't know which addresses failed for you, but I'd like to hear about that. It suggests that my ISPs might be flaky....
Ellison, Carl M
carl.m.ellison@...
Mar 13, 1999 2:24 am
655
Carl, thank you. The e-mail problems existed with acm.org and some earlier address starting with "sw.???.com". They didn't know the user "cme". What made me so...
Gunther Schadow
schadow@...
Mar 13, 1999 2:24 am
656
What are the advantages of embedding display types in the definition of byte strings, rather than explicitly using an S-expression to relate a MIME-type to a...
Paul Crowley
paul@...
Mar 14, 1999 12:12 am
657
Paul, funny that you ask about it today. I just sent private email to Carl about this issue this morning. Several people I talked to about SPKI like it a lot,...
Robert Grimm
rgrimm@...
Mar 14, 1999 3:10 am
658
While I'm asking about some of the things in the SPKI draft, here's another possibility: I think there's an alternative secure way to do 1-of-N certificates...
Paul Crowley
paul@...
Mar 14, 1999 5:54 am
659
Hi Paul and Robert -- I agree with you both the display types are a debatable feature of SPKI/SDSI. They obviously add a little bit of complexity. On the ...
Ron Rivest
rivest@...
Mar 16, 1999 5:38 pm
660
... Can we drop display types and declare that the name is UTF8? That gets us both an international alphabet and a simple syntax. For those unfamiliar with...
Eric Grosse
ehg@...
Mar 15, 1999 10:13 pm
661
Eric -- It is probably an argument against UTF8 that the document you cite doesn't display its examples correctly on my (Netscape) browser. I get upside-down...
Ron Rivest
rivest@...
Mar 15, 1999 10:47 pm
662
... Yes: http://plan9.bell-labs.com/plan9/doc/utf.ps The claim is not that all existing applications work with UTF8, only that in a new context like SPKI where...
Eric Grosse
ehg@...
Mar 15, 1999 11:10 pm
663
... I think these advantages are both important features of SPKI/SDSI, but as far as I can tell they can be done without the complexity of display types, by...
Paul Crowley
paul@...
Mar 16, 1999 12:13 am
664
The UTF-8 definition is RFC 2279. You can find it at <ftp://ftp.isi.edu/in-notes/rfc2279.txt>. I also agree that if the only real need for display types is for...
Jon Callas
jcallas@...
Mar 16, 1999 12:21 am
665
I am all but certain that an earlier draft had (or was going to have) UTF8 as the standard. Apparently something happened to that? brian Brian Thomas, CISSP -...
Brian M. Thomas
bt0008@...
Mar 16, 1999 12:28 am
666
... Ron> Eric -- Ron> It is probably an argument against UTF8 that the document you Ron> cite doesn't display its examples correctly on my (Netscape) Ron>...
Paul Koning
pkoning@...
Mar 16, 1999 12:51 am
667
Hi Some one know if is posible that the PKI have a mathematical or formal model to proof their properties Jesus Angel...
Jose de Jesus Angel A...
jesus@...
Mar 16, 1999 3:15 am
668
... I _strongly_ dislike that idea. Using a display type or similar say that a particular string is in UTF8 is just fine. But making it the default, and at the...
Niels Möller
nisse@...
Mar 16, 1999 5:33 am
669
Niels, fixing UTF-8 as an encoding for the canonical form would simply force you to use that encoding for authorization computations, but your application is ...
Robert Grimm
rgrimm@...
Mar 16, 1999 8:21 am
670
Hi, sorry for stumbling into your conversation. I believe that going with UNICODE and choosing UTF-8 as the canonical encoding is indeed a pretty good idea...
Gunther Schadow
schadow@...
Mar 16, 1999 5:18 pm
671
... I forgot one thing. There are problems with canonical encodings for multilingual character sets, since the boundary between two characters sometimes is not...
Gunther Schadow
schadow@...
Mar 16, 1999 5:34 pm
672
... If MIME-typed byte strings were always to occur in parameters, this might be a valid solution, but as I recall the original debate on this topic, we were ...
