Title :
A Description Logic for PKI Trust Domain Modeling
Author :
Yu, Haibo ; Jin, Chunzhao ; Che, Haiyan
Author_Institution :
Coll. of Comput. Sci. & Technol., Jilin Univ., Changchun
Abstract :
Public-key infrastructures (PKIs) are essential for providing electronic payment security services such as authentication and privacy in open networks like Internet. The purpose of this paper is to propose a description logic-based approach to modeling and reasoning about PKI trust domain. In the formalism, concept model is used to formalize PKI entities and trust domain, which gives most precise definitions of different PKI entities and is more expressive than that of first-order logic-based approach. This approach can model hierarchical and mesh PKI structure, as well as multi-domain PKI connected with trust mechanisms such as cross-certification or bridge CA. A noticeable feature is that it can also be extended easily to integrate with PMI to form a unified framework for authentication and authorization
Keywords :
authorisation; data privacy; formal logic; inference mechanisms; public key cryptography; Internet; PKI trust domain modeling; PKI trust domain reasoning; authentication; authorization; description logic; electronic payment security service; first-order logic-based approach; public-key infrastructures; Authentication; Bridges; Computer science; Computer security; Educational institutions; IP networks; Identity management systems; Logic; Privacy; Public key;
Conference_Titel :
Information Technology and Applications, 2005. ICITA 2005. Third International Conference on
Conference_Location :
Sydney, NSW
Print_ISBN :
0-7695-2316-1
DOI :
10.1109/ICITA.2005.11
