[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: "trust management" vs. "certified identity"

To: "Frank O'Dwyer" <[email protected]>
Subject: Re: "trust management" vs. "certified identity"
From: Matt Blaze <[email protected]>
Date: Sat, 06 Jan 1996 20:03:11 -0500
Cc: [email protected]
In-Reply-To: Your message of "Sun, 07 Jan 1996 00:47:48 GMT." <[email protected]>
Sender: [email protected]

...
>That's not to say that the certification approach can't be general, though.  
>It occurred to me that a very general certificate format would
>simply be to sign some assertions (predicates), and then 
>feed all available signed predicates plus some axioms (the analogue 
>of root keys) into a theorem prover.  Sounds slow though.  More 
>practically perhaps, you could sign some kind of (safe) interpreted code, 
>and have the verifier execute it on some initial variable set to come up with
>some access decision.  
>
Yes.  That's pretty much PolicyMaker in a nutshell.

-matt

References:
- RE: "trust management" vs. "certified identity"
  - From: "Frank O'Dwyer" <[email protected]>

Prev by Date: RE: "trust management" vs. "certified identity"
Next by Date: No Subject
Prev by thread: RE: "trust management" vs. "certified identity"
Next by thread: Re: "trust management" vs. "certified identity"
Index(es):
- Date
- Thread