Title :
Active certificates: a new paradigm in digital certificate management
Author :
Mukkamala, Ravi ; Balusani, Srikanth
Author_Institution :
Dept. of Comput. Sci., Old Dominion Univ., Norfolk, VA, USA
Abstract :
Digital certificates form the basis for trust among entities in distributed systems. Current digital certificates are passive entities (i.e., they contain only data). The passive nature of the certificates has greatly limited the scope of use of the certificates. In addition, the data-only certificates also limit the architectures supporting the certificate management and verification. We propose the concept of active certificates - certificates that contain both data and executable code. With this new concept, the use of certificates can now be extended to other areas such as authorization, privilege management, and access control. More importantly, it gives rise to the possibility of more flexibility in system architectures. We discuss the active certificate concept, some candidate architectures for certificate management, and application areas for the concept.
Keywords :
certification; distributed processing; security of data; access control; active certificate; authenticity; authorization; certificate management; certification authority; confidentiality; digital certificates; distributed systems; privilege management; system architectures; trust; verification; Access control; Authentication; Authorization; Certification; Computer science; Costs; Cryptography; Electronic commerce; Information security; Public key;
Conference_Titel :
Parallel Processing Workshops, 2002. Proceedings. International Conference on
Print_ISBN :
0-7695-1680-7
DOI :
10.1109/ICPPW.2002.1039709
