[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: The case against mega-certificates


	Just to try to bring out what I believe is the most important 
part of SDSI - all users are logical peers and have equal rights to
define security policies. No more of the old VMS problem of having to 
have OPER (system privilege) to create a rights identifier.

	Whether you bind everything together into a single entity or 
not should not depend on whether you are using CD-ROM or the net. One
can always use a file: or relative url to access a disk resource.

	This might well be an opportunity to employ a naming scheme like
WEB://ai.mit.edu/document or PDIs. Provide data on the disk, an provide some 
sort of index to permit users to use the disk as a frozen cache for object which 
may have been updated on the network.