Merging and Extending the PGP and PEM Trust Models - the ICE-TEL Trust Model
The ICE-TEL project is a pan-European project that is building an Internet X.509 based certification infrastructure throughout Europe, plus several secure applications that will use it. This paper describes the trust model that is being implemented by the project. A trust model specifies the means by which a user may build trust in the assertion that a remote user is really who he purports to be (authentication) and that he does in fact have a right to access the service or information that he is requesting (authorization). The ICE-TEL trust model is based on a merging of and extensions to the existing Pretty Good Privacy (PGP) web of trust and Privacy Enhanced Mail (PEM) hierarchy of trust models, and is called a web of hierarchies trust model. The web of hierarchies model has significant advantages over both of the previous models, and these are highlighted here. The paper further describes the way that the trust model is enforced through some of the new extensions in the X.509 V3 certificates, and gives examples of its use in different scenarios.
Year of publication: |
1997-05
|
---|---|
Authors: | Chadwick, D.W. ; Young, A.J. ; Kapidzic Cicovic, N. |
Publisher: |
IEEE |
Subject: | QA 76 Software | computer programming |
Saved in:
freely available
Saved in favorites
Similar items by subject
-
Incorporating Security Behaviour into Business Models Using a Model Driven Approach
Linington, Peter.F., (2007)
-
The Link between BPR, Evolutionary Delivery and Evolutionary Development
Johnson, L., (1997)
-
Likelihood Function for a Simple Cardioid Sonobuoy
Runnalls, Andrew R., (2006)
- More ...