Title :
SD3: a trust management system with certified evaluation
Author_Institution :
AT&T Labs. Res., Florham Park, NJ, USA
Abstract :
We introduce SD3, a trust management system consisting of a high-level policy language, a local policy evaluation, and a certificate retrieval system. A unique feature of SD3 is its certified evaluator. As the evaluator computes the answer to a query, it also computes a proof that the answer follows from the security policy. Before the answer is returned, the proof is passed through a simple checker and incorrect proofs are reported as errors. The certified evaluator reduces the trusted computing base and greatly increases our confidence that the answers produced by the evaluator follow from the specification, despite complex optimizations. To illustrate SD3´s capabilities, we show how to implement a secure name service, similar to DNSSEC, entirely in SD3
Keywords :
DATALOG; optimisation; security of data; DNSSEC; SD3; Secure Dynamically Distributed Datalog; certificate retrieval system; certified evaluation; errors; high-level policy language; local policy evaluation; optimizations; secure name service; security policy; trust management system; trusted computing base; Abstracts; Computer bugs; Domain Name System; High level languages; Prototypes; Public key; Public key cryptography; Query processing; Security; Software standards;
Conference_Titel :
Security and Privacy, 2001. S&P 2001. Proceedings. 2001 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-7695-1046-9
DOI :
10.1109/SECPRI.2001.924291
