SPX: global authentication using public key certificates
- 10 December 2002
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- p. 232-244
- https://doi.org/10.1109/risp.1991.130791
Abstract
SPX, a reference implementation of an open distributed authentication service architecture based on ISO Standard 9594-9/CCITT X.509 directory public key certificates and hierarchically organized certification authorities, is described. SPX manages the end system state and provides the run-time environment enabling applications to mutually authenticate on the basis of a global principal identity. SPX scales well in that it does not require online trusted components, and permits management of global trust relationship policy in arbitrarily large distributed environments. Conceptual, component, and protocol descriptions are provided.Keywords
This publication has 8 references indexed in Scilit:
- Practical authentication for distributed computingPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1990
- Reducing risks from poorly chosen keysPublished by Association for Computing Machinery (ACM) ,1989
- Privacy enhancement for Internet electronic mail: Part II - certificate-based key managementPublished by RFC Editor ,1989
- Privacy enhancement for Internet electronic mail: Part III - algorithms, modes, and identifiersPublished by RFC Editor ,1989
- Domain names - concepts and facilitiesPublished by RFC Editor ,1987
- Factors Affecting Distributed System SecurityIEEE Transactions on Software Engineering, 1987
- Password securityCommunications of the ACM, 1979
- A method for obtaining digital signatures and public-key cryptosystemsCommunications of the ACM, 1978