I thought I had asked the list about this earlier, but searching through my archive I couldn't find anything relevant. I'm trying to figure out how hostkeys...
Niels Möller
nisse@...
Nov 8, 1999 7:35 pm
838
... The quick answer would be "as anything else", but that's a bit naïve. Here's how I see this - I'm sure some of you will object to the presentation. ... ...
Camillo Särs
Camillo.Sars@...
Nov 9, 1999 9:55 am
839
X509 views certs as identification cards. SDSI views certs as membership cards. SPKI views certs as authorization letters. I argue that each of these views is...
Wei Dai
weidai@...
Nov 13, 1999 12:37 am
840
... Hash: SHA1 ... The envisioned solution isn't anywhere near that complex. Each person who has permission to delegate also has the full cert chain (from the...
Carl Ellison
cme@...
Nov 13, 1999 2:36 am
841
... For now, I'll only do the simplest case. ACL -> Server_X_Key. Naturally, the server has to prove possession of the corresponding private key. ... I'm not...
Niels Möller
nisse@...
Nov 15, 1999 6:27 pm
842
... One of my constant assertions has been that authentication is just one (not-so-)special case of authorization: the right to be known by a name. It...
Brian M. Thomas
bt0008@...
Nov 15, 1999 10:36 pm
843
... Such a collection would be worrisome to someone who is concerned about Carl's notion of using certificates for dossier-building. ... I tend to follow a...
Brian M. Thomas
bt0008@...
Nov 15, 1999 10:51 pm
844
... I didn't get much feedback on this... For now, I'm considering using (tag (ssh-host se.liu.lysator.sanna)) in certificates or acls expressing trust in a...
Niels Möller
nisse@...
Nov 16, 1999 10:30 pm
845
... Thanks for these comments. I understand now that what I'm really looking for is a unified scalable distributed database design that can support the entire...
Wei Dai
weidai@...
Nov 17, 1999 2:04 am
846
For the time being, I'm assuming that display types might not be abolished. My code requires that things like type-names, bignums and hashes have empty display...
Niels Möller
nisse@...
Nov 22, 1999 12:27 am
847
Wei, Thanks for the clear description of the different approaches to solve the Access Control problem. I would like to suggest a different approach that...
yosimass@...
Nov 23, 1999 11:46 am
848
IPSec 2000 Global Summit: the international rendez-vous. A CFP is online at: http://www.upperside.fr/baipsecy2k.htm...
Peter Lewis
peter.lewis@...
Nov 25, 1999 11:12 am
849
I have now started to implement a few pieces of SPKI. So far, I only use ACL:s to grant power to public keys, and hashes. For tags, I support lists, strings,...
Niels Möller
nisse@...
Nov 29, 1999 11:21 pm
850
Hi SPKI list, The CFP for IEEE Enterprise Security Workshop'2000 is out: http://www.imc.sut.ac.jp/English/wetice2000/cfp.html. It is to be held in NIST,...
Wu Wen
wen@...
Dec 3, 1999 3:19 am
851
... Hash: SHA1 If anyone has links to pages at http://www.clark.net/pub/cme it would be good to change them to my redirector http://www.pobox.com/~cme ...
Carl Ellison
cme@...
Jan 15, 2000 9:57 pm
852
Hi, TrustEstablishment (available now on AlphaWorks at http://www.alphaworks.ibm.com) is a set of Java packages that can be used to solve the Trust Management...
yosimass@...
Jan 20, 2000 2:30 pm
853
List, Does anyone has or knows of a test-suite for SPKI compliance? I believe this is a "must" if we want different implementations of SPKI to be...
JoanMa Mas Ribés
mas@...
Feb 10, 2000 6:35 pm
854
... Hash: SHA1 ... Hi. This was one intended purpose of the examples document. However, it's both out of date and not complete. I'd welcome any help in that...
Carl Ellison
cme@...
Feb 10, 2000 8:49 pm
855
Hello, I am new to the subject of Public Key and Certificate Theory. I am currently trying to collect and sort the heterogeneous information about it. There...
Francois.PAUL@...
Feb 17, 2000 11:25 am
856
... My impression is that there is not really a religious war. I think the attitude among people working with PKIX is something like "X.509 exists, and is good...
Niels Möller
nisse@...
Feb 17, 2000 1:28 pm
857
This is a response to my previous e-mail (that I only sent the reply to Niels). ... Hmm, I could only find my address in the to:-header. Did you forget cc:ing...
Hi. I would like to know if there is any implementation of SPKI (SPKI certificate creation, verification, management of delegation, etc.) available on the Web....
Marco Casassa Mont
marco_casassa-mont@...
Feb 17, 2000 8:24 pm
859
Let me know if there is anything that I can do to help move things forward. I'm realtively new to the list, but I've done a little work with SPKI. Joe Salowey...
Joe Salowey
joes@...
Feb 17, 2000 10:46 pm
860
List, I guess that Carl is the editor of the SPKI certificate structure draft, right? Draft that has been "coming soon ..." for quite a while now. I was...
JoanMa Mas Ribés
mas@...
Feb 18, 2000 12:38 am
861
... Hash: SHA1 ... certificate creation, verification, management of delegation, etc.) available on the Web. ... Marco, there is an implementation at MIT....
Carl Ellison
cme@...
Feb 23, 2000 8:10 am
862
Hi folks, As promised to Carl I have done a draft of an ECC key format for SPKI. The idea being to plug in the gap in the following document... ...
Nigel Smart
nigel@...
Mar 10, 2000 9:31 am
863
hi, i hope this request of mine is not inappropriate on this list. my apologies in advance if it is. i'm looking for any information about authentication...
Aaron Stromas
astromas@...
Mar 24, 2000 3:35 pm
864
thanks, derric. i understand that pkix incorporates the hierarchical trust model. yet, the protocol utilising digital certificates that is used on the web in...
Aaron Stromas
astromas@...
Mar 24, 2000 5:10 pm
865
... Hash: SHA1 ... the ... find ... to ... Aaron, I would suggest reading the PKIX drafts and RFCs, for answers to questions about what they propose. They...
Carl Ellison
cme@...
Mar 24, 2000 7:30 pm
866
Aaron, the assumption that PKIX incorporates or somehow necessitates a hierarchical trust model is often made, but is completely incorrect. The relying party...
