[OpenID] Web of trust mathematics

Peter Williams pwilliams at rapattoni.com
Sun Aug 12 01:33:37 UTC 2007 

So I know I reviewed this -- I recall having to learn to type the chars in the name -- and must have cited one of these works in an early draft of a literature review (including folks who the average professor would censor as un-citable). But its not there, in the final copy.
 
If I half remember why, I think I decided that its concepts too closely followed the groundbreaking work of Lampson/Abadi/et al in belief-based logics for reasoning about chains of authenticated handoffs, in distributed naming trees. If you are not frightened by modal logics, consider
 
http://research.microsoft.com/lampson/45-AuthenticationTheoryAndPractice/Word.doc

________________________________

From: general-bounces at openid.net on behalf of Eric Norman
Sent: Sat 8/11/2007 3:07 PM
To: OpenID General
Subject: [OpenID] Web of trust mathematics




On Aug 11, 2007, at 12:30 PM, Peter Williams wrote:

> Henry decided that multiple references to his static RSA-public via 
> FOAF relations will ultimately protect the distribution of the key. 
> that is: checking multiple local resolvers, one can build 
> confidence in a global name/key. This is similar to Ed Gerck's 
> theory of spread-spectrum reliance - for which he provides a basis 
> in classical information theory, information redundancy  - a 
> process that defines a computable confidence metric for a reliable 
> emailAddresses (see nma.com, and its secure web mail scheme).

Editorial note:  you might want to be careful citing Ed Gerck.  A
lot of folks would find this analogy apt: Ed Gerck is to computing
theory as Richard C. Hoagland is to science.  This does not mean
that he doesn't have a good thought every once in a while, and
this might be one of them.

Anyway, the phrase "computable confidence metric" prompts me
to  mention the work of Audun Jøsang.  I've already mentioned
this on Story Henry's blog, but this looks like another opportunity.
Among other things, his work attempts to actually measure the
notion of "confidence" (or "trust").  I'm not claiming the it's Gospel,
but it is interesting and it does correctly capture what seem to be
two "intuitively obvious" notions.

(1)  Confidence decreases as the length of the chain increases.
(2)  Confidence increases with multiple testimonials (issuers).

His publications can be found at

    http://sky.fit.qut.edu.au/~josang/publications.html

A lot of them seem to be mostly the same, perhaps a better list
is the references at the bottom of

    http://www.wikipedia.org/wiki/Subjective_logic

If algebra doesn't terrify you. I recommend starting with

    http://sky.fit.qut.edu.au/~josang/papers/Jos1999-NDSS.pdf

Eric Norman
http://ejnorman.blogspot.com <http://ejnorman.blogspot.com/> 


_______________________________________________
general mailing list
general at openid.net
http://openid.net/mailman/listinfo/general

More information about the general mailing list