[cap-talk] network level designation and authorization
Karp, Alan H
alan.karp at hp.com
Fri Jun 9 16:35:23 EDT 2006
Coderman wrote:
>
> my limited understanding of e-speak is that it uses SPKI for privacy
> between service endpoints, rather than presenting private IPv4/IPv6
> endpoints to which services can bind and communicate (privately).
>
Sorry for the delay, but I didn't remember and had to track down someone
who did.
SPKI certificate chains that carried the authorization were used instead
of authentication. The protocol used signed Diffie-Hellman key-exchange
to set up a shared secret and then used HMAC message authentication
inside an encryption transform.
_________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Karp, Alan H.vcf
Type: text/x-vcard
Size: 423 bytes
Desc: Karp, Alan H.vcf
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20060609/41e86b94/attachment.vcf
More information about the cap-talk
mailing list