Английская Википедия:Distributed System Security Architecture

Материал из Онлайн справочника
Версия от 21:18, 27 февраля 2024; EducationBot (обсуждение | вклад) (Новая страница: «{{Английская Википедия/Панель перехода}} '''Distributed System Security Architecture''' or (DSSA) is a computer security architecture that provides a suite of functions including login, authentication, and access control in a distributed system. To differ from other similar architectures, the DSSA architecture offers the ability to access all these functions without the trusted Server (computing)|...»)
(разн.) ← Предыдущая версия | Текущая версия (разн.) | Следующая версия → (разн.)
Перейти к навигацииПерейти к поиску

Distributed System Security Architecture or (DSSA) is a computer security architecture that provides a suite of functions including login, authentication, and access control in a distributed system. To differ from other similar architectures, the DSSA architecture offers the ability to access all these functions without the trusted server (known as a certificate authority) being active.

In DSSA, security objects are handled by owners and access is controlled by the central, universally trusted, certificate authority.

DSSA/SPX

DSSA/SPX is the authentication protocol of DSSA. The CDC is a certificate granting server while the certificate is a ticket signed by CA which contains the public key of the party being certified. Since the CDC is merely distributing previously signed certificates, it is not necessary for it to be trusted.

<math>A \to CDC\colon B</math>

<math>CDC \to A\colon \operatorname{certificate}(B, CA)</math>

<math>A \to B\colon A, \{T_A, A\}K_{AB}, \{L, A, P'_A\}S_A, \{\{K_{AB}\}P_B\}S'_A</math>

<math>B \to CDC\colon A</math>

<math>CDC \to B\colon \operatorname{certificate}(A, CA)</math>

<math>B \to A\colon \{T_A + 1\}K_{AB} </math>

External links