shibboleth-dev - Re: QIK proposal re public key management
Subject: Shibboleth Developers
List archive
- From: "Von Welch" <>
- To: "RL 'Bob' Morgan" <>
- Cc: Shibboleth Dev Team <>
- Subject: Re: QIK proposal re public key management
- Date: Wed, 15 Oct 2003 23:37:10 -0500
Bob,
The group is ARRG (Authority Recognition Research Group). It's url is
https://forge.gridforum.org/projects/arrg-rg
Von
RL 'Bob' Morgan writes (23:26 October 15, 2003):
>
> Ken K mentioned there was a discussion about something called QIK,
> "qualified installation of keys", at the recent GGF meeting, in the CA-Ops
> WG. I found a paper via Google:
>
> http://caops.es.net/Documents/GGFVII/AlternativeGovernance.pdf
>
> "Machine Assisted Trust Mechanisms for Grids", Madsen et al
>
> The main http://caops.es.net/ page claims this work has moved to a new
> (GGF?) research group, but that link doesn't work ...
>
> Anyway I mention it because the basic idea is I think quite consistent
> with our approach to key management in Shib, namely that the use of root
> keys by relying parties has to be associated with policy constraints
> specific to the applications they're used in, and that it helps to be able
> to express these constraints clearly and move them around. Something like
> this scheme would presumably be how sites would distribute and advertise
> their own Shib metadata. Paul Madsen, who is first author, is also active
> in Liberty, don't know whether these ideas are reflected there or not ...
>
> - RL "Bob"
>
- QIK proposal re public key management, RL 'Bob' Morgan, 10/16/2003
- Re: QIK proposal re public key management, Von Welch, 10/16/2003
- Re: QIK proposal re public key management, Frank Siebenlist, 10/16/2003
- RE: QIK proposal re public key management, Scott Cantor, 10/16/2003
Archive powered by MHonArc 2.6.16.