© University of Kent - Contact | Feedback | Legal | FOI | Cookies
Merging and extending the PGP and PEM trust models - the ICE-TEL trust model
D. W. Chadwick, A.J. Young, and N. Kapidzic Cicovic
IEEE Networks Special Publication on Internet Security, 11(3):182-196, May 1997.Abstract
The ICE-TEL project is a pan-European project that is building an Internet X.509 based certification infrastructure throughout Europe, plus several secure applications that will use it. This paper describes the trust model that is being implemented by the project. A trust model specifies the means by which a user may build trust in the assertion that a remote user is really who he purports to be (authentication) and that he does in fact have a right to access the service or information that he is requesting (authorization). The ICE-TEL trust model is based on a merging of and extensions to the existing Pretty Good Privacy (PGP) web of trust and Privacy Enhanced Mail (PEM) hierarchy of trust models, and is called a web of hierarchies trust model. The web of hierarchies model has significant advantages over both of the previous models, and these are highlighted here. The paper further describes the way that the trust model is enforced through some of the new extensions in the X.509 V3 certificates, and gives examples of its use in different scenarios.
Download publication 134 kbytes (PDF)Bibtex Record
@article{2117,
author = {Chadwick, D. W. and Young, A.J. and Kapidzic Cicovic, N.},
title = {Merging and Extending the {PGP} and {PEM} Trust Models - the {ICE-TEL} Trust Model},
month = {May},
year = {1997},
pages = {182-196},
keywords = {determinacy analysis, Craig interpolants},
note = {},
doi = {},
url = {http://www.cs.kent.ac.uk/pubs/1997/2117},
publication_type = {article},
journal = {IEEE Networks Special Publication on Internet Security},
volume = {11},
number = {3},
}