An intruder model for trust negotiation

Author

Balbiani, Philippe ; Chevalier, Yannick ; El Houri, M.

Author_Institution

Inst. de Rech. en Inf. de Toulouse, Univ. de Toulouse, Toulouse, France

fYear

2010

fDate

10-13 Oct. 2010

Firstpage

1

Lastpage

8

Abstract

In a distributed environment, and more specially in service oriented architectures, the entities interacting one with another rely on credentials to decide whether an action they are told to perform is permitted. These credentials are exchanged within trust negotiation sessions during which the participating entities build up trust by communicating certificates to trusted peers. Dolev and Yao have introduced a notion of symbolic intruder to represent the capacities of a malicious agent trying to attack a cryptographically secured communication protocol. We present in this paper an adaptation of that intruder that retains the same deductive capabilities but is specialized for the analysis of the exchanges during a trust negotiation session. In particular this permits us to analyze the security of a distributed access control policy w.r.t. a malicious insider.

Keywords

authorisation; cryptography; distributed processing; protocols; service-oriented architecture; cryptographically secured communication protocol; distributed access control policy; distributed environment; intruder model; malicious agent; malicious insider; service oriented architectures; trust negotiation session; Communication channels; Encryption; Mathematical model; Receivers; Semantics;

fLanguage

English

Publisher

ieee

Conference_Titel

Risks and Security of Internet and Systems (CRiSIS), 2010 Fifth International Conference on

Conference_Location

Montreal, QC

Print_ISBN

978-1-4244-8641-0

Electronic_ISBN

978-1-4244-8642-7

Type

conf

DOI

10.1109/CRISIS.2010.5764918

Filename

5764918