Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Security Protocols

Security Protocols 2003: Security Protocols pp 19–23Cite as

Towards Flexible Credential Negotiation Protocols

  • Conference paper

  • 709 Accesses

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 3364))

Abstract

Accessing information over the Internet has become an essential requirement in modern economy, and unknown parties can come together on the Net and interact for the purpose of acquiring or offering services. The open and dynamic nature of such a scenario requires new protocols allowing parties to communicate and enforce security specifications related to access control conditions to be fulfilled. In this paper we discuss several issues to be investigated in the development of these flexible interaction protocols.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Altenschmidt, C., Biskup, J., Flegel, U., Karabulut, Y.: Secure Mediation: Requirements and Design. In: Proc. of the 12th IFIP WG11.3 Working Conference on Database and Application Security, Chalkidiki, Greece (July 1998)

    Google Scholar 

  2. Blaze, M., Feigenbaum, J., Ioannidis, J., Keromytis, A.D.: The Role of Trust Management in Distributed Systems Security. In: Secure Internet Programming: Issues in Distributed and Mobile Object Systems. LNCS State-of-the-Art series. Springer, Heidelberg (1998)

    Google Scholar 

  3. Blaze, M., Feigenbaum, J., Lacy, J.: Decentralized Trust Management. In: Proc. of 1996 IEEE Symposium on Security and Privacy, Oakland, CA, May 1996, pp. 164–173 (1996)

    Google Scholar 

  4. Biskup, J., Karabulut, Y.: A Hybrid PKI Model with an Application for Secure Mediation. In: Proc. of the 16th Annual IFIP WG 11.3 Working Conference on Data and Application Security, July 2002, King’s College, Cambridge (2002)

    Google Scholar 

  5. Bonatti, P., Samarati, P.: A Unified Framework for Regulating Access and Information Release on the Web. Journal of Computer Security (2002) (to appear)

    Google Scholar 

  6. Chu, Y.-H.: Joan Feigenbaum, B. LaMacchia, P. Resnick, and M. Strauss. REFEREE: trust management for Web applications. World Wide Web Journal 2(3), 706–734 (1997)

    Google Scholar 

  7. Chang, C.-C.K., Garcia-Molina, H.: Mind Your Vocabulary: Query Mapping Across Heterogeneous Information Sources. In: Proc. of the 1999 ACM-SIGMOD, pp. 335–346 (1999)

    Google Scholar 

  8. Housley, R., Ford, W., Polk, W., Solo, D.: Internet X.509 Public Key Infrastructure Certificate and CRL Profile, 2459th edn. (January 1999), http://www.ietf.org/rfc/rfc2459.txt

  9. Jajodia, S., Samarati, P., Sapino, M.L., Subrahmanian, V.S.: Flexible Support for Multiple Access Control Policies. ACM Transactions on Database Systems 26(2), 18–28 (2001)

    Article  Google Scholar 

  10. Li, N., Winsborough, W.H., Mitchell, J.C.: Distributed Credential Chain Discovery in Trust Management. In: Proc. of the Eighth ACM Conference on Computer and Communications Security, Philadelphia, PA, USA (2001)

    Google Scholar 

  11. Seamons, K.E., Winsborough, W., Winslett, M.: Internet Credential Acceptance Policies. In: Proceedings of the Workshop on Logic Programming for Internet Applications, Leuven, Belgium (July 1997)

    Google Scholar 

  12. Winslett, M., Ching, N., Jones, V., Slepchin, I.: Assuring Security and Privacy for Digital Library Transactions on the Web: Client and Server Security Policies. In: Proceedings of ADL 1997 — Forum on Research and Tech. Advances in Digital Libraries, Washington, DC (May 1997)

    Google Scholar 

  13. Winslett, M., Ching, N., Jones, V., Slepchin, I.: Using Digital Credentials on the World-Wide Web. In: Journal of Computer Security (1997)

    Google Scholar 

  14. Winsborough, W., Seamons, K.E., Jones, V.: Automated Trust Negotiation. In: Proc. of the DARPA Information Survivability Conf. & Exposition, Hilton Head Island, January 25-27. IEEE-CS, Los Alamitos (2000)

    Google Scholar 

  15. Yu, T., Ma, X., Winslett, M.: An Efficient Complete Strategy for Automated Trust Negotiation over the Internet. In: Proceedings of 7th ACM Computer and Communication Security, Athens, Greece (November 2000)

    Google Scholar 

  16. Yu, T., Winslett, M., Seamons, K.E.: Interoperable Strategies in Automated Trust Negotiation. In: Proc. of the Eighth ACM Conference on Computer and Communications Security, Philadelphia, PA, USA (2001)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Dip. di Scienze Fisiche – Sezione di Informatica, Università di Napoli, “Federico II”, Via Cinthia, I-80126, Napoli, Italy

    Piero A. Bonatti

  2. Dip. di Tecnologie dell’Informazione, Università di Milano, Via Bramante 65, I-26013, Crema, Italy

    Sabrina De Capitani di Vimercati & Pierangela Samarati

Authors
  1. Piero A. Bonatti
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Sabrina De Capitani di Vimercati
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Pierangela Samarati
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Computer Systems Group, Vrije Universiteit, Amsterdam, The Netherlands

    Bruno Crispo

  2. Georgia Institute of Technology, Atlanta, GA

    James A. Malcolm

  3. Microsoft Research, Cambridge, UK

    Michael Roe

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Bonatti, P.A., De Capitani di Vimercati, S., Samarati, P. (2005). Towards Flexible Credential Negotiation Protocols. In: Christianson, B., Crispo, B., Malcolm, J.A., Roe, M. (eds) Security Protocols. Security Protocols 2003. Lecture Notes in Computer Science, vol 3364. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11542322_4

Download citation

  • DOI: https://doi.org/10.1007/11542322_4

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-28389-8

  • Online ISBN: 978-3-540-31836-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation