Trust-X:%20A%20Peer-to-Peer%20Framework%20for%20Trust%20Establishment - PowerPoint PPT Presentation

About This Presentation
Title:

Trust-X:%20A%20Peer-to-Peer%20Framework%20for%20Trust%20Establishment

Description:

Consider a Rental Car service. The service is free for the employees of Corrier company. ... copy of the ID card, to double check the ownership of the badge. ... – PowerPoint PPT presentation

Number of Views:108
Avg rating:3.0/5.0
Slides: 18
Provided by: Carl327
Learn more at: http://www.sis.pitt.edu
Category:

less

Transcript and Presenter's Notes

Title: Trust-X:%20A%20Peer-to-Peer%20Framework%20for%20Trust%20Establishment


1
Trust-X A Peer-to-Peer Framework for Trust
Establishment
  • Elisa Bertino, et.al.
  • Presented by
  • Carlos Caicedo

2
Introduction
  • Trust establishment via trust negotiation
  • Exchange of digital credentials
  • Credential exchange has to be protected
  • Policies for credential disclosure
  • Claim Current approaches to trust negotiation
    dont provide a comprehensive solution that takes
    into account all phases of the negotiation process

3
Trust Negotiation model
Resource request
Server
Client
Policy Base
Policies
Policies
Credentials
Credentials
Resource granted
4
Trust-X
  • XML-based system
  • Designed for a peer-to-peer environment
  • Both parties are equally responsible for
    negotiation management.
  • Either party can act as a requester or a
    controller of a resource
  • X-TNL XML based language for specifying
    certificates and policies

5
Trust-X (2)
  • Certificates They are of two types
  • Credentials States personal characteristics of
    its owner and is certified by a CA
  • Declarations collect personal information about
    its owner that does not need to be certified
  • Trust tickets (X-TNL)
  • Used to speed up negotiations for a resource when
    access was granted in a previous negotiation
  • Support for policy pre-conditions
  • Negotiation conducted in phases

6
Trust-X (3)
a) Credential b) Declaration
7
The basic Trust-X system
8
Message exchange in a Trust-X negotiation
Bob
Alice
Service request
Request
Disclosure policies
Prerequisite acknowledge
Disclosure policies
Credential and/or Declaration
Match disclosure policies
Credential and/or Declaration
Service granted
9
Disclosure Policies
  • They state the conditions under which a resource
    can be released during a negotiation
  • Prerequisites associated to a policy, its a
    set of alternative disclosure policies that must
    be satisfied before the disclosure of the policy
    they refer to.

10
Modeling negotiationlogic formalism
Disclosure policies are expressed in terms of
logical expressions which can specify either
simple or composite conditions against
certificates.
  • P() credential type
  • C set of conditions

R?P1(c), P2(c)
Policy expressed as
Slide from http//www.ccs.neu.edu/home/ahchan/wsl
/symposium/bertino.ppt
11
Example
  • Consider a Rental Car service.
  • The service is free for the employees of Corrier
    company. Moreover, the Company already knows
    Corrier employees and has a digital copy of their
    driving licenses. Thus, it only asks the
    employees for the company badge and a valid copy
    of the ID card, to double check the ownership of
    the badge. By contrast, rental service is
    available on payment for unknown requesters, who
    have to submit first a digital copy of their
    driving licence and then a valid credit card.
    These requirements can be formalized as follows

12
Example (2)
13
Trust-X negotiation
14
Negotiation Tree
  • Used in the policy evaluation phase
  • Maintains the progress of a negotiation
  • Used to identify at least a possible trust
    sequence that can lead to success in a
    negotiation (a view)

15
Negotiation Tree (2)
16
Comparison of Trust Negotiation Systems
17
(No Transcript)
Write a Comment
User Comments (0)
About PowerShow.com