Title :
A logic-based reasoning about PKI trust model
Author :
El Bakkali, Hanane ; Kaitouni, Bahia Idrissi
Author_Institution :
Inst. Univ. de la Recherche Sci., Rabat, Morocco
Abstract :
Applications such those of electronic payment require the participants authentication and a privacy of crucial information. Public-key infrastructures (PKIs) are essential for providing them these security services in open networks like the Internet. We propose logic for reasoning about PKI trust models. Our formalism enables us to describe a trust model of a PKI with greater precision than the widely used graph. It also allows us to verify whether a model respond to the PKI objectives and under which conditions. These objectives generally concern statements about entitles beliefs with regard to public key authenticity and certification authorities (CAs) trustworthiness. The proposed formalism takes into account the number of intermediates that have participated in an entity belief and the constraints that can be the concern of certification practices or certificate policies of PKI´s CAs. These constraints may influence the trust model suitability to applications with specific requirements
Keywords :
Internet; electronic money; logic; message authentication; public key cryptography; telecommunication security; Internet; PKI objectives; PKI trust model; authentication; certificate policies; certification authority; certification practices; electronic payment; entitles beliefs; information privacy; logic-based reasoning; open networks; public key authenticity; public key cryptography; public-key infrastructures; security services; trust model; trustworthiness; Authentication; Certification; Content addressable storage; Context-aware services; IP networks; Information security; Logic; Privacy; Public key; Web and internet services;
Conference_Titel :
Computers and Communications, 2001. Proceedings. Sixth IEEE Symposium on
Conference_Location :
Hammamet
Print_ISBN :
0-7695-1177-5
DOI :
10.1109/ISCC.2001.935353
