BIB-VERSION:: CS-TR-v2.0
ID:: ncstrl.dartmouthcs//TR2003-453
ENTRY:: June 10, 2003
ORGANIZATION:: Dartmouth College, Computer Science
TITLE:: SPADE: SPKI/SDSI for Attribute Release Policies in a Distributed Environment 
TYPE:: Technical Report (paper)
REVISION:: 1
AUTHOR:: Nazareth, Sidharth P. 
DATE:: May 2003
RETRIEVAL:: For a paper copy, email <reports@cs.dartmouth.edu>
RETRIEVAL:: For a paper copy, write to
       Technical Report Librarian
       Department of Computer Science
       Dartmouth College
       6211 Sudikoff Laboratory
       Hanover, NH 03755-3510
       USA
RETRIEVAL:: Compressed Postscript at http://www.cs.dartmouth.edu/reports/TR2003-453.ps.Z
RETRIEVAL:: PDF at http://www.cs.dartmouth.edu/reports/TR2003-453.pdf
ABSTRACT:: 
 Shibboleth is a federated administrated system that supports
inter-institutional authentication and authorization for sharing of
resources. SPKI/SDSI is a public key infrastructure whose creation
was motivated by the perception that X.509 is too complex and
flawed. This thesis addresses the problem of how users that are part
of a Public Key Infrastructure in a distributed computing system can
effectively specify, create, and disseminate their Attribute Release
Policies for Shibboleth using SPKI/SDSI. This thesis explores
existing privacy mechanims, as well as distributed trust management
and policy based systems. My work describes the prototype for a Trust
Management Framework called SPADE (SPKI/SDSI for Attribute Release
Policies in a Distributed Environment) that I have designed,
developed and implemented. The principal result of this research has
been the demonstration that SPKI/SDSI is a viable approach for trust
management and privacy policy specification, especially for
minimalistic policies in a distributed environment.
NOTE:: 
 M.S Thesis.
 Advisor: Sean Smith
END:: ncstrl.dartmouthcs//TR2003-453