Supporting Robust and Secure Interactions in Open Domains through Recovery of Trust Negotiations

Get BibTex-formatted data

Download

PDF

Author

Anna C. Squicciarini, Alberto Trombetta, Elisa Bertino

Entry type

article

Abstract

Trust negotiation supports authentication and access control across multiple security domains by allowing parties to use non-forgeable digital credentials to establish trust. By their nature trust negotiation systems are used in environments that are not always reliable. In particular, it is important not only to protect negotiations against malicious attacks, but also against failures and crashes of the parties or of the communication means. To address the problem of failures and crashes, we propose an efficient and secure recovery mechanism. The mechanism includes two recovery protocols, one for each of the two main negotiation phases. In fact, because of the requirements that both services and credentials have to be protected on the basis of the associated disclosure policies, most approaches distinguish between a phase of disclosure policy evaluation from a phase devoted to actual credentials exchange. We prove that the protocols, besides being efficient, are secure with respect to integrity, and confidentiality and are idempotent. To the best of our knowledge, this is the first effort for achieving robustness and fault tolerance of trust negotiation systems.

Download

PDF

Date

2007

Journal

Proceedings of 27th International Conference on Distributed Computing Systems (ICDCS'2007)

Key alpha

Bertino

Publisher

IEEE

Affiliation

Purdue University, University of Insubria-Como

Publication Date

2007-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Article{ Bertino,
	title = "Supporting Robust and Secure Interactions in Open Domains through Recovery of Trust Negotiations",
	author = "Anna C. Squicciarini, Alberto Trombetta, Elisa Bertino",
	year = "2007",
	journal = "Proceedings of 27th International Conference on Distributed Computing Systems (ICDCS'2007)",
	publisher = "IEEE ",
	abstract = "Trust negotiation supports authentication and access
control across multiple security domains by allowing parties
to use non-forgeable digital credentials to establish
trust. By their nature trust negotiation systems are used
in environments that are not always reliable. In particular,
it is important not only to protect negotiations against
malicious attacks, but also against failures and crashes
of the parties or of the communication means. To address
the problem of failures and crashes, we propose
an efficient and secure recovery mechanism. The mechanism
includes two recovery protocols, one for each of the
two main negotiation phases. In fact, because of the requirements
that both services and credentials have to be
protected on the basis of the associated disclosure policies,
most approaches distinguish between a phase of disclosure
policy evaluation from a phase devoted to actual
credentials exchange. We prove that the protocols, besides
being efficient, are secure with respect to integrity,
and confidentiality and are idempotent. To the best of our
knowledge, this is the first effort for achieving robustness
and fault tolerance of trust negotiation systems.",
	affiliation = "Purdue University, University of Insubria-Como",
}