Public-key Support for Collaborative Groups
暂无分享,去创建一个
In this paper, we describe a use of public-key cryptography to achieve access control over communication and data transfers in order to support the work of collaborative groups. The participants form themselves into groups and access is granted to group members. The use of cryptography in this project is exceptional only in the care with which we designed the protocols for identity establishment. Our goal is to produce a working application that has the potential to be more secure than earlier alternatives, because it is easier to use correctly. This paper compares our identity establishment process, along the lines of SDSI, to that of an X.509 PKI or PGP, and shows the security advantages of the process we use. We also describe an experimental method for key verification intended to make strong key verification both easy and enjoyable for the average user.
[1] Butler W. Lampson,et al. SPKI Certificate Theory , 1999, RFC.
[2] Whitfield Diffie,et al. New Directions in Cryptography , 1976, IEEE Trans. Inf. Theory.
[3] J. Doug Tygar,et al. Why Johnny Can't Encrypt: A Usability Evaluation of PGP 5.0 , 1999, USENIX Security Symposium.
[4] Ronald L. Rivest,et al. SDSI - A Simple Distributed Security Infrastructure , 1996 .