Title :
Towards practical automated trust negotiation
Author :
Winsborough, William H. ; Li, Ninghui
Author_Institution :
Network Associates Inc., Glenwood, MD, USA
Abstract :
Exchange of attribute credentials is a means to establish mutual trust between strangers that wish to share resources or conduct business transactions. Automated Trust Negotiation (ATN) is an approach to regulate the exchange of sensitive credentials by using access control policies. Existing ATN work makes unrealistic simplifying assumptions about credential-representation languages and credential storage. Moreover while existing work protects the transmission of credentials, it fails to hide the contents of credentials, thus providing uncontrolled access to potentially sensitive attributes. To protect information about sensitive attributes, we introduce the notion of attribute acknowledgment policies (Ack policies). We then introduce the trust target graph (TTG) protocol, which supports a more realistic credential language, Ack policies, and distributed storage of credentials.
Keywords :
authorisation; groupware; access control policies; attribute acknowledgment policies; attribute credentials; automated trust negotiation; business transactions; mutual trust; sensitive attributes; trust target graph protocol; Access control; Access protocols; Authorization; Collaboration; Computer science; Conferences; Permission; Protection; Secure storage; Security;
Conference_Titel :
Policies for Distributed Systems and Networks, 2002. Proceedings. Third International Workshop on
Print_ISBN :
0-7695-1611-4
DOI :
10.1109/POLICY.2002.1011297
