Basic HTML version of Foils prepared May 19 99

Foil 128 Details on SESAME I

From Remarks on Internet and Java Security Basic Information Track Computational Science Course CPS616 -- Spring Semester 1999. by Geoffrey Fox, Mehmet Sen
SESAME uses the widely accepted Generic Security Service API (GSS-API).
The user gets mechanism transparency.
To access the distributed system, a user first authenticates to an Authentication Server to get a cryptographically protected token used to prove his or her identity.
The user then presents the token to a Privilege Attribute Server to obtain a guaranteed set of access rights contained in a Privilege Attribute Certificate (or PAC). The PAC is a specific form of Access Control Certificate that conforms to ECMA and ISO/ITU-T standards.

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Wed May 19 1999