Title :
Towards Security Analyses of an Identity Federation Protocol for Web Services in Convergent Networks
Author :
Ter Beek, Maurice ; Moiso, Corrado ; Petrocchi, Marinella
Author_Institution :
ISTI-CNR, Pisa
Abstract :
We describe a formal approach to the analysis of security aspects of an identity federation protocol for Web services in convergent networks. This network protocol was proposed by Telecom Italia as a solution to allow end users to access services on the Web through different access networks without explicitly providing any credentials, while the service providers can trust the user´s identity information provided by the access networks and access some user data. As a first step towards a fullblown formal security analysis of the protocol, we specify three user scenarios in the process algebra Crypto-CCS and verify the vulnerability of one of these specifications w.r.t. a man-in-the-middle attack with the model checker PaMoChSA.
Keywords :
Web services; cryptography; process algebra; protocols; subscriber loops; telecommunication security; Telecom Italia; Web services; access networks; computer network protocols; convergent networks; formal security analysis; identity federation protocol; man-in-the-middle attack; model checker PaMoChSA; process algebra Crypto-CCS; user identity information; Access protocols; Algebra; Authentication; Computer security; Cryptographic protocols; Cryptography; Data security; Information security; Telecommunications; Web services;
Conference_Titel :
Telecommunications, 2007. AICT 2007. The Third Advanced International Conference on
Conference_Location :
Morne
Print_ISBN :
0-7695-2843-0
Electronic_ISBN :
0-7695-2843-0
DOI :
10.1109/AICT.2007.46
