Title :
An intruder model for trust negotiation
Author :
Balbiani, Philippe ; Chevalier, Yannick ; El Houri, M.
Author_Institution :
Inst. de Rech. en Inf. de Toulouse, Univ. de Toulouse, Toulouse, France
Abstract :
In a distributed environment, and more specially in service oriented architectures, the entities interacting one with another rely on credentials to decide whether an action they are told to perform is permitted. These credentials are exchanged within trust negotiation sessions during which the participating entities build up trust by communicating certificates to trusted peers. Dolev and Yao have introduced a notion of symbolic intruder to represent the capacities of a malicious agent trying to attack a cryptographically secured communication protocol. We present in this paper an adaptation of that intruder that retains the same deductive capabilities but is specialized for the analysis of the exchanges during a trust negotiation session. In particular this permits us to analyze the security of a distributed access control policy w.r.t. a malicious insider.
Keywords :
authorisation; cryptography; distributed processing; protocols; service-oriented architecture; cryptographically secured communication protocol; distributed access control policy; distributed environment; intruder model; malicious agent; malicious insider; service oriented architectures; trust negotiation session; Communication channels; Encryption; Mathematical model; Receivers; Semantics;
Conference_Titel :
Risks and Security of Internet and Systems (CRiSIS), 2010 Fifth International Conference on
Conference_Location :
Montreal, QC
Print_ISBN :
978-1-4244-8641-0
Electronic_ISBN :
978-1-4244-8642-7
DOI :
10.1109/CRISIS.2010.5764918
