[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
global uniqueness of auth fields
-----BEGIN PGP SIGNED MESSAGE-----
At 01:01 PM 8/15/97 +0300, Markku-Juhani Saarinen wrote:
>Subject: getting rid of intersection algebra
[...]
>We could use DOIs (domains of interpretation) that specify the application
>family to which the auth data is relevant. DOIs could be simple octet
>strings designated by some authority or random numbers with 128 or more
>bits of entropy to avoid collisions.
>
>An application can ignore all certs that belong to an incompatible DOI.
[...]
I should point out that many auth fields will have parameters which make
them globally unique. For example, an auth to spend from a bank account
will need not just a verb "spend" and maybe a spending limit, but also the
identification of the bank account (bank, account #) and that latter is
globally unique. However, if the field doesn't contain such parameters,
it's always possible to have a DOI field as a parameter in the <auth>.
- Carl
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQCVAwUBM/RXDlQXJENzYr45AQEMagQAhDEx9Z4EcMZJxv/1YyaYauIo1z7G0BVh
IiRY3j3CjajqolKOdFoT/LlaQ4gdhp2WKdJKynD8odEocomnJZRquVnfGFrmqUIN
OLKLn6RwsCitpKtHweHnIu3lLYFex7BeVDoC9T5Bv5W9uqnHmp+XLHM3dNdXJJNt
iLzRiakL0ec=
=nwjf
-----END PGP SIGNATURE-----
+------------------------------------------------------------------+
|Carl M. Ellison cme@cybercash.com http://www.clark.net/pub/cme |
|CyberCash, Inc. http://www.cybercash.com/ |
|207 Grindall Street PGP 2.6.2: 61E2DE7FCB9D7984E9C8048BA63221A2 |
|Baltimore MD 21230-4103 T:(410) 727-4288 F:(410)727-4293 |
+------------------------------------------------------------------+
References: