Showing papers on "Certification Practice Statement published in 1997"
TL;DR: The ICE-TEL trust model is based on a merging of and extensions to the existing pretty good privacy (PGP) web of trust and privacy-enhanced mail (PEM) hierarchy of trust models, and is called a web of hierarchies trust model.
Abstract: The ICE-TEL project is a pan-European project which is building an Internet X.509-based certification infrastructure throughout Europe plus several secure applications that will use it. This article describes the trust model being implemented by the project. A trust model specifies the means by which a user may build trust in the assertion that a remote user is really who he purports to be (authentication) and that he does in fact, have a right to access the service or information he is requesting (authorization). The ICE-TEL trust model is based on a merging of and extensions to the existing pretty good privacy (PGP) web of trust and privacy-enhanced mail (PEM) hierarchy of trust models, and is called a web of hierarchies trust model. The web of hierarchies model has significant advantages over both previous models, and these are highlighted. The article further describes the way the trust model is enforced through some of the new extensions in the X.509 V3 certificates, and gives examples of its use in different scenarios.
45 citations
TL;DR: The strengths and weaknesses of the World Health Organisation Certification Scheme are covered, including the product certificate and batch certificate, which can provide a basis for product registration.
Abstract: To facilitate use of the World Health Organisation (WHO) Certification Scheme, a set of guidelines was developed in 1996, which includes model certificates for use by Member States. Today, the scheme provides transparent information, particularly about the regulatory status of a product in the exporting country. If used properly, the product certificate and batch certificate can provide a basis for product registration. This article covers the strengths and weaknesses of the scheme.
10 citations
1 Jan 1997
TL;DR: A comparison of schemes employed by certification authorities or trusted third parties to generate certificates is compared to find out which schemes are more effective and efficient.
Abstract: A comparison of schemes employed by certification authorities or trusted third parties to generate certificates.
5 citations
10 Feb 1997
TL;DR: The EC funded ICE-TEL project, which is deploying a security infrastructure and application set for the European research community, has described a new trust model that attempts to be equally applicable to organisation-centric PEM users and user-focused PGP users.
Abstract: Public key certification provides mechanisms that can be used to build truly scaleable security services, such as allowing people who have never met to have assurance of each other's identity. Authentication involves syntactic verification of a certificate chain followed by a semantic look at the policies under which the certificates were issued. This results in a level of assurance that the identity of the person to be authenticated is an accurate description of the person involved, and requires verifiers to specify who they trust and what they trust them to do. Two widely discussed mechanisms for specifying this trust, the PEM and PGP trust models, approach the problem from fundamentally different directions. The EC funded ICE-TEL project, which is deploying a security infrastructure and application set for the European research community, has described a new trust model that attempts to be equally applicable to organisation-centric PEM users and user-centric PGP users.
3 citations
1 citations
KPMG1
TL;DR: It is suggested that for electronic commerce to thrive among parties who have never met each other, trust must become a commodity item, and security and trust in electronic commerce are discussed.
Abstract: Suggests that for electronic commerce to thrive among parties who have never met each other, trust must become a commodity item. Certification authorities (CAs) are the standard mechanism by which online entities can identify one another. The policies and practices followed by a CA are just as important as the basic security of the electronic commerce network. This recognition is now standard, and “trust models” are emerging wherein diverse online business partners can trust one another, through the mutual recognition of their respective CAs. Overviews security and trust in electronic commerce. Discusses the role of certificates, with particular reference to the Australian Public Key Authentication Framework. Presents a vision for electronic commerce, premissed on electronic trust as a commodity.