Link to the University of Pittsburgh Homepage
Link to the University Library System Homepage Link to the Contact Us Form

Receipt-mode trust negotiation: Efficient authorization through outsourced interactions

Adams, AK and Lee, AJ and Mossé, D (2011) Receipt-mode trust negotiation: Efficient authorization through outsourced interactions. In: UNSPECIFIED UNSPECIFIED, 430 - 434. ISBN 9781450305648

[img] Plain Text (licence)
Available under License : See the attached license file.

Download (1kB)

Abstract

In trust negotiation approaches to authorization, previously unacquainted entities establish trust in one another gradually via the bilateral and iterative exchange of policies and digital credentials. Although this affords resource providers with an expressive means of access control for open systems, the trust negotiation process incurs non-trivial computational and communications costs. In this paper, we propose Receipt-Mode Trust Negotiation (RMTN) as a means of mitigating the performance penalties on servers that use trust negotiation. RMTN provides a means of off-loading the majority of the trust negotiation process to delegated receipt-generating helper servers. RMTN ensures that helpers produce correct trust negotiation protocol receipts, and that the helpers are incapable of impersonating the resource server outside of the RMTN protocol. We describe an initial implementation of our RMTN protocol on a Linux testbed, discuss the security of this protocol, and present experimental results indicating that the receipt-mode protocol does indeed enhance the performance of resource servers that rely on trust negotiation approaches to authorization. Copyright 2011 ACM.


Share

Citation/Export:
Social Networking:
Share |

Details

Item Type: Book Section
Status: Published
Creators/Authors:
CreatorsEmailPitt UsernameORCID
Adams, AK
Lee, AJadamlee@pitt.eduADAMLEE
Mossé, D
Date: 20 May 2011
Date Type: Publication
Journal or Publication Title: Proceedings of the 6th International Symposium on Information, Computer and Communications Security, ASIACCS 2011
Page Range: 430 - 434
Event Type: Conference
DOI or Unique Handle: 10.1145/1966913.1966973
Schools and Programs: Dietrich School of Arts and Sciences > Computer Science
Refereed: Yes
ISBN: 9781450305648
Date Deposited: 27 Nov 2012 18:39
Last Modified: 31 Jul 2020 18:07
URI: http://d-scholarship.pitt.edu/id/eprint/16479

Metrics

Monthly Views for the past 3 years

Plum Analytics

Altmetric.com


Actions (login required)

View Item View Item