Query Certificate Managers

A Query Certificate Manager (QCM) is a server used for the authenticated distribution of sensitive information over an insecure network. A QCM server acts like a secure, distributed database: it queries remote QCM servers to answer local queries about distributed data, and ensures the authenticity of the data by cryptographic means. Moreover, QCM can accept digitally-signed certificates issued by remote servers. When such certificates are submitted along with the local query, queries to the remote servers are short-circuited. The management of queries and certificates is completely automatic and transparent to the user. Applications such as directory services, public key distribution, and distributed access control lists are directly programmable in QCM, and QCM has a formal semantics and correctness guarantees.
Welcome to the QCM home page at the Department of Computer and Information Science of the University of Pennsylvania.



Related Sites

Trevor Jim / tjim@saul.cis.upenn.edu