SPKI/SDSI

SPKI (Simple Public Key Infrastructure) [2, 1] was developed starting in 1995 to remedy shortcomings [3] in the existing ID certificate definitions: X.509 and {{PGP}} (see Pretty Good Privacy). It provided the first authorization certificate definition [4, 5]. Originally, SPKI used no names for keyholders but, after the merger with SDSI (Simple Distributed Security Infrastructure), now includes both named keyholders and named groups or roles—specifying authorization grants to names and definitions of names (membership in named groups).

In public-key security protocols, the remote party (the prover) in a transaction is authenticated via public key cryptography. Upon completion of that authentication, the verifierhas established that the prover has control over a particular private key—the key that corresponds to the public key the verifier used. This public key is itself a good identifier for the prover. It is a byte string that is globally unique. It also has the advantages of not...

Authors

1. Carl Ellison
   View author publications

   You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

1. Eindhoven University of Technology, Eindhoven, The Netherlands

   Henk C. A. van Tilborg

Rights and permissions

Reprints and permissions

Copyright information

© 2005 International Federation for Information Processing

About this entry

Cite this entry

Ellison, C. (2005). SPKI/SDSI. In: van Tilborg, H.C.A. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA . https://doi.org/10.1007/0-387-23483-7_409

Download citation

• .RIS
• .ENW
• .BIB

• DOI: https://doi.org/10.1007/0-387-23483-7_409

• Publisher Name: Springer, Boston, MA

• Print ISBN: 978-0-387-23473-1

• Online ISBN: 978-0-387-23483-0

• eBook Packages: Computer ScienceReference Module Computer Science and Engineering

Publish with us

Policies and ethics