[Jsdsi-users] Certificates and Trust

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Hi all,
I am working on a project that is supposed to build
trust management system. And I want to decide the type
of certificate to work with. However Im a little bit
confused as i don't have a strong background in PKI, I
dont whether to use X.509v3 or SPKI certificates. So
I would be really grateful if you answered my
inquiries.

First, in my system I need identity certificates,
authorization certificates, and capability
certificates. For Identity certificates, I need it not
just to bind public keys to names, however I need it
to bind the public key to more specific information
(e.g. membership in a certain organization, age,
student in a certain school, etc). For the capability
certificate, I need it to bind the public key to a
certain capability (e.g. providing a certain service)
.. so which of them do u think is more appropriate in
my case?

Second, and incase of SPKI is more appropriate, do you
think JSDSI would would be useful for me? I want a
tool that let me create/generate spki certificates,
delegate certificates, verify certificates and
certification paths.

Any further advice in this track is much appreciated.
Thanks in advance 
Somaya

__________________________________ 
Yahoo! FareChase: Search multiple travel sites in one click.
http://farechase.yahoo.com