ABOUT THE ICSG PRIVILEGE MANAGEMENT PROTOCOLS WORKING GROUP
The Privilege Management Protocols WG will focus on the development of protocols for efficient authentication and the secure determination of "who can do what". The "who" will be defined as a framework that uses public key based identities that enable authentication and key establishment. The authorization of "what" a device can do will be based on management of the identity that can be authenticated, formed by hashing the public key. This approach has considerable advantages over shared key based systems that must maintain strict protection of the information that can be authenticated.
The group will develop proposals for this problem area that may include, but are not limited to:
- Cryptographic protocols to support device authentication and key establishment. Existing standards based cryptographic algorithms will be used. A "key centric" approach will be pursued that uses public-keys as the primary identification mechanism.
- Formats for the transport of public keys, hash based key identifiers and authentication and key establishment information. The formats will be defined in a transport neutral manner to enable re-use in different communication environments. Initial target applications of the formats would be in IEEE 802.11 frames and sample mappings may be provided.
- A user oriented framework defining the application and interactions of the identity mechanisms. Consumer focused products need simple usableinterfaces for managing the relationships between devices. The framework will provide definitions of terms and where useful, recommended practices for the describing and managing identities.
Working Group Participation
To participate in the Privilege Management Protocols (PMP) Working Group, the entity with which you are associated (company, organization, etc.) must be a corporate member of the IEEE-SA.
Only entity members of the ICSG can have voting rights in the Working Group. Additionally, some individual subject experts may be invited to participate in the Working Group (without voting rights).