Adding SPKI Certificates to JDK 1.2
نویسندگان
چکیده
The Java Development Kit (JDK) has included the concepts of cryptographic keys, signatures and certificates since version 1.0, and they have been improved and extended in JDK 1.2. However, the certificate interfaces still only cover identity certificates. As more and more security software makes use of authorization certificates, we feel that the concept of an authorization certificate and its implementation need to be added to the Java Security
منابع مشابه
Distributed Policy Management for JDK 1.2
In JDK 1.2, the security architecture supports fine grained access control. In the default implementation, Java runtime modules (classes) are signed, and permissions are configured through a configuration file using the signer’s identity and the loading location (URL) of the module. In a large network, the number of applets and the frequency of changes to the security policy will eventually gro...
متن کاملSPKI Certificate Theory
The SPKI Working Group has developed a standard form for digital certificates whose main purpose is authorization rather than authentication. These structures bind either names or explicit authorizations to keys or other objects. The binding to a key can be directly to an explicit key, or indirectly through the hash of the key or a name for it. The name and authorization structures can be used ...
متن کاملComputing Minimum-Height Certificate Trees in SPKI/SDSI
SPKI/SDSI is a framework that combines a simple public-key infrastructure and a simple distributed security infrastructure with a means of defining local name spaces. It allows principals, which can be a person or an organization, to locally create groups of principals and delegate rights to other principals or groups of principals by issuing certificates. To prove authorizations, principals ne...
متن کاملReducing the Dependence of SPKI/SDSI on PKI
Trust-management systems address the authorization problem in distributed systems. They offer several advantages over other approaches, such as support for delegation and making authorization decisions in a decentralized manner. Nonetheless, trust-management systems such as KeyNote and SPKI/SDSI have seen limited deployment in the real world. One reason for this is that both systems require a p...
متن کاملAccess Control in Distributed Systems using SPKI Authorisation Certificates
Aalto University, P.O. Box 11000, FI-00076 Aalto www.aalto.fi Author Yki Kortesniemi Name of the doctoral dissertation Access Control in Distributed Systems using SPKI Authorisation Certificates Publisher School of Electrical Engineering Unit Department of Communications and Networking Series Aalto University publication series DOCTORAL DISSERTATIONS 63/2015 Field of research Networking Technol...
متن کامل