The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

Decentralized Trust Management

Author

Matt Blaze,Joan Feigenbaum,Jack Lacy

Entry type

article

Abstract

We identify the trust management problem as a distinct and important component of security in network services. Aspects of the trust managment problem include formulating security policies and security credentials, determining whether particular sets of credentials satisfy the relevant policies, and deferring trust to third parties. Existing systems that support security in networked applications, including X.509 and PGP, address only narrow subsets of the overall trust management problem and often do so in a manner that is appropriate to only one application. This paper presents a comprehensive approach to trust management, based on a simple language for specifying trusted actions and trust relationships. It also describes a prototype implementation of a new trust management system, called PolicyMaker, that will facilitate the development of security features in a wide range of network services.

Date

1996 – May

URL

http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=502679

Institution

IEEE

Journal

IEEE

Key alpha

Bishop

Note

Originally published in Proc. IEEE Conference on Security and Privacy

Publication Date

2001-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.