25-10-2012, 01:03 PM
Scalable Trust of Next-Generation Management (STRONGMAN)
ABSTRACT
STRONGMAN focused on advanced boundary controls and risk management with the key goal of increasing automation
of the management of boundary controllers such as gateways and firewalls, in the Internet. Automated management would
translate high-level security policy into actions which support that policy at every relevant level of the information
infrastructure. Investigation of scalable automated trust management should provide a huge leap forward in the ability to
deploy an auditable error-free network infrastructure meeting security policy goals. The STRONGMAN approach used the
KeyNote trust management system. Trust relationships are specified in terms of a symbolic language, which when executed
results in exchanges of cryptographic credentials that map the trust relationships into allowed and disallowed actions.
STRONGMAN deliverables included an architecture for scalable automated trust management and an experimental prototype
realization of that architecture for the IP Internet using the OpenBSD UNIX implementation. The STRONGMAN project
originated a variety of new approaches to managing groups of boundary controllers and other devices that gave rise to a whole
new policy-directed paradigm.