Distributed Authorization with CAProck
In distributed systems, authorization is often the last centralized component. Cryptographic capabilities offer an alternative.
For the related problem of authentication, the use of public key cryptography allows decoupling different authentication phases in time, with the effect that at the point of use, only those parts need to be performed that can be distributed, i.e. without any reliance on centralized components. The same principle can be applied to authorization.
This talk introduces the concept described in Capabilities for Distributed Authorization, and introduces the CAProck library that implements the concept.
A basic understanding of public key cryptography is assumed, i.e. how digital signatures work.
Presenters
Jens Finkhaeuser, Interpeer gUG
Jens Finkhaeuser is a software professional, architect, founder and established FLOSS developer. His work spans around two decades, and most of the Internet stack, with a particular focus on security and networking protocol design and implementation. He started the Interpeer Project with the intent of bringing this experience to bringing the human factor back into the next evolution of the Internet. Jens adopted Bavaria as his home and lives there with his wife, two children and a tortoise.