Extending the SDSI / SPKI Model through Federation Webs [chapter]

Altair Olivo Santin, Joni da Silva Fraga, Carlos Maziero
2003 Lecture Notes in Computer Science  
Classic security systems use a trust model centered in the authentication procedure, which depends on a naming service. Even when using a Public Key Infrastructure as X.509, such systems are not easily scalable and can become single failure points or performance bottlenecks. Newer systems, with trust paradigm focused on the client and based on authorization chains, as SDSI/SPKI, are much more scalable. However, they offer some difficulty on locating the chain linking the client to a given
more » ... . This paper defines extensions to the SDSI/SPKI authorization and authentication model, which allow the client to build new chains in order to link it to a server when the corresponding path does not exist.
doi:10.1007/978-3-540-45184-6_11 fatcat:zf7rvsx7ajaybph6koqktknusq