Cryptographic sealing for information secrecy and authentication

1 April 1982

journal article
Published by Association for Computing Machinery (ACM) in Communications of the ACM

Vol. 25 (4) , 274-286
https://doi.org/10.1145/358468.358493

Abstract

A new protection mechanism is described that provides general primitives for protection and authentication. The mechanism is based on the idea of sealing an object with a key. Sealed objects are self-authenticating, and in the absence of an appropriate set of keys, only provide information about the size of their contents. New keys can be freely created at any time, and keys can also be derived from existing keys with operators that include Key-And and Key-Or . This flexibility allows the protection mechanism to implement common protection mechanisms such as capabilities, access control lists, and information flow control. The mechanism is enforced with a synthesis of conventional cryptography, public-key cryptography, and a threshold scheme.

Keywords

INFORMATION SECURITY

This publication has 14 references indexed in Scilit:

Preface
IBM Systems Journal, 1980
How to share a secret
Communications of the ACM, 1979
Privacy and authentication: An introduction to cryptography
Proceedings of the IEEE, 1979
Adding capability access to conventional file servers
ACM SIGOPS Operating Systems Review, 1979
Using encryption for authentication in large networks of computers
Communications of the ACM, 1978
A method for obtaining digital signatures and public-key cryptosystems
Communications of the ACM, 1978
New directions in cryptography
IEEE Transactions on Information Theory, 1976
A lattice model of secure information flow
Communications of the ACM, 1976
Protection in programming languages
Communications of the ACM, 1973
Programming semantics for multiprogrammed computations
Communications of the ACM, 1966