Abstract: We extend the logic and semantics of authorization due to Abadi, Lampson, et al. to support restricted delegation. Our formal model provides a simple interpretation for the variety of constructs in the Simple Public Key Infrastructure (SPKI), and lends intuition about possible extensions. We discuss both extensions that our semantics supports and extensions that it cautions against.
Keywords: security, distributed computing
Copyright © 2000 by Springer-Verlag.The copy made available here is the authors' version; for a definitive copy see the publisher's version described above.
See also earlier version howell:spki-tr.
See also later version howell:jspki.