Scalable Trust of Next-Generation Management (STRONGMAN)
Abstract
STRONGMAN focused on advanced boundary controls and risk management with the key goal of increasing automation of the management of boundary controllers such as gateways and firewalls, in the Internet. Automated management would translate high-level security policy into actions which support that policy at every relevant level of the information infrastructure. Investigation of scalable automated trust management should provide a huge leap forward in the ability to deploy an auditable error-free network infrastructure meeting security policy goals. The STRONGMAN approach used the KeyNote trust management system. Trust relationships are specified in terms of a symbolic language, which when executed results in exchanges of cryptographic credentials that map the trust relationships into allowed and disallowed actions. STRONGMAN deliverables included an architecture for scalable automated trust management and an experimental prototype realization of that architecture for the IP Internet using the OpenBSD UNIX implementation. The STRONGMAN project originated a variety of new approaches to managing groups of boundary controllers and other devices that gave rise to a whole new policy-directed paradigm.
Document Details
- Document Type
- Technical Report
- Publication Date
- Oct 01, 2004
- Accession Number
- ADA428174
Entities
People
- Jonathan M. Smith
Organizations
- University of Pennsylvania