Security needs
Authentication
- A message is sent by the source it claims to be sent by
- No spurious messages
Encryption
- A message can only be received by the entity it is addressed to
ACLs
- groups, delegation, revocation
- by step, e.g. subscribe, send notifications, etc.