[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

electricity (was Re: Out on a loop)

To: Ed Gerck <egerck@laser.cps.softex.br>
Subject: electricity (was Re: Out on a loop)
From: Carl Ellison <cme@cybercash.com>
Cc: Carl Ellison <cme@cybercash.com>, SPKI <spki@c2.net>
In-Reply-To: <Pine.LNX.3.95.971209031501.1007J-100000@laser.cps.softex.br>
References: <3.0.3.32.19971209000744.009824e0@cybercash.com>

-----BEGIN PGP SIGNED MESSAGE-----

At 11:24 PM 12/9/97 -0200, Ed Gerck wrote:
>However, unlike an electric model where electrons must follow a loop
>because of perfect charge conservation, information such as contained in
>trust relationships is not conserved (thank God and the Internet) and
>there is no sense in pursuing this example to require for a return
>connection between verifier and subject or verifier and issuer. Internet
>trust computation is not analogous to an electrical circuit because the
>unit of information on trust can be consumed or produced at will, unlike
>the eletrical unit of charge. So, your example of battery and ammeter is
>flawed on two counts: it does not allow for high-to-low impedance transfer
>with source isolation (as a transistor does) and predicates perfect charge
>conservation.

We are not trying to establish trustworthiness in our trust computations.  
Rather, we issue authorizations -- permissions -- and sometimes the 
permission to delegate those permissions.  We make those decisions based on 
whether an entity has that authority, not based on whether it is 
trustworthy.  In some sad cases, we will have to delegate some authorization 
to an entity we have determined to be untrustworthy.  [cf., Dilbert]

The certificate loop reduction process results in a reduced authorization of 
the form:

<self, requester, --, auth, validity_period> in which we have determined 
that a given requesting principal has the authorization we delegated to it 
(through some intermediaries, most likely).  This is the result of an 
injection of authorization coming from us, the verifier, and passing through 
cert chains and coming back to us (possibly attenuated).  The closest I can 
come to an appropriate analogy for that is electric current.  I'm sorry if
the analogy isn't exact.

 - Carl

-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.5.3

iQCVAwUBNI7FQRN3Wx8QwqUtAQGKhgP8DHk8mSYIXpNfxTyqrx1A2cb7mVwyev29
e/HiU72/obDXyxzW3/4BDqxTWiAaf+dEjv2xmQxYMCjFe5ot5vicU0OuR6T/cg48
MVgRaOHD/mEBk/NSSsYG033HlInsyHXvuQZwMu9zGIgrWm0XeM3BSaNknLM8hnmD
Y6KlJKJNHuM=
=pZdZ
-----END PGP SIGNATURE-----

References:

Re:

From: Carl Ellison <cme@cybercash.com>

Out on a loop

From: Ed Gerck <egerck@laser.cps.softex.br>

Prev by Date: Re: Out on a loop
Next by Date: Re: Private Key replacement
Prev by thread: Re: Out on a loop
Next by thread: Re: Out on a loop
Index(es):
- Main
- Thread