Traust: A trust negotiation-based authorization service for open systems

Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Volumn 2006, Issue , 2006, Pages 39-48

  Lee, Adam J ^a   Winslett, Amarianne ^a   Basney, Jim ^b   Von, Welch ^b  

^a University of Illinois at Urbana Champaign   (United States)

^b UNIVERSITY OF ILLINOIS AT URBANA CHAMPAIGN   (United States)

Author keywords

Attribute based access control; Credentials; Trust negotiation

Indexed keywords

ATTRIBUTE BASED ACCESS CONTROL; CREDENTIALS; POLICY LANGUAGES; TRUST NEGOTIATION;

INFORMATION RETRIEVAL; INFORMATION TECHNOLOGY; LEGACY SYSTEMS; NETWORK PROTOCOLS; SECURITY OF DATA;

OPEN SYSTEMS;

EID: 33748089681     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (31)

1. M. Y. Decker and P. Sewell. Cassandra: Distributed access control policies with tunable expressiveness. In 5th IEEE International Workshop on Policies for Distributed Systems and Networks, 2004.
2. E. Bertino, E. Ferrari, and A. C. Squicciarini. XTNL: An XML-based language for trust negotiations. In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY '03), 2003.
3. E. Bertino, E. Ferrari, and A. C. Squicciarini. Trust-X: A peer-to-peer framework for trust establishment. IEEE Transactions on Knowledge and Data Engineering, 16(7):827-842, Jul. 2004.
4. G. R. Blakley. Safeguarding cryptographic keys. In AFIPS Conference Proceedings, volume 48, pages 313-317, 1979.
5. P. Bonatti and P. Samarati. Regulating service access and information release on the web. In 7th ACM Conference on Computer and Communications Security, pages 134-143, 2000.
6. K. Borders, X. Zhao, and A. Prakash. CPOL: High-performance policy evaluation. In Proceedings of the 12th ACM Conference on Computer and Communications Security (CCS 2005), Nov. 2005.
7. T. Dierks and C. Allen. The TLS protocol version 1.0. IETF Request for Comments RFC-2246, Jan. 1999.
8. D. Dolev and A. C. Yao. On the security of public key protocols. IEEE Transactions on Information Theory, IT-29(2):198-208, Mar. 1983.
9. A. Herzberg, Y. Mass, J. Michaeli, D. Naor, and Y. Ravid. Access control meets public key infrastructure, or: assigning roles to strangers. In IEEE Symposium on Security and Privacy, May 2000.
10. A. Hess, J. Holt, J. Jacobson, and K. E. Seamons. Content-triggered trust negotiation. ACM Transactions on Information System Security, 7(3), Aug. 2004.
11. A. Hess, J. Jacobson, H. Mills, R. Wamsley, K. E. Seamons, and B. Smith. Advanced client/server authentication in TLS. In Network and Distributed Systems Security Symposium, Feb. 2002.
12. Internet security research lab-projects. Web Page, May 2005. 〈http://isrl.cs.byu.edu/TrustBuilder.html〉.
13. H. Koshutanski and F. Massacci. Interactive access control for web services. In 19th IFIP Information Security Conference (SEC), pages 151-166, Aug. 2004.
14. H. Koshutanski and F. Massacci. Interactive trust management and negotiation scheme. In 2nd International Workshop on Formal Aspects in Security and Trust (FAST), pages 139-152, Aug. 2004.
15. H. Koshutanski and F. Massacci. Interactive credential negotiation for stateful business processes. In 3rd International Conference on Trust Management (iTrust), pages 257-273, May 2005.
16. N. Li and J. Mitchell. RT: A role-based trust-management framework. In Third DARPA Information Survivability Conference and Exposition, Apr. 2003.
17. J. Novotny, S. Tuecke, and V. Welch. An online credential repository for the grid: MyProxy. In Tenth International Symposium on High Performance Distributed Computing (HPDC-10), Aug. 2001.
18. A. J. O'Donnell and H. Sethu. On achieving software diversity for improved network security using distributed coloring algorithms. In 11th ACM Conference on Computer and Communications Security, Oct. 2004.
19. L. Pearlman, V. Welch, I. Foster, C. Kesselman, and C. Tuecke. A community authorization service for group collaboration. In IEEE 3rd International Workshop on Policies for Distributed Systems and Networks, 2002.
20. T. Ryutov, L. Zhou, C. Neuman, T. Leithead, and K. E. Seamons. Adaptive trust negotiation and access control. In 10th ACM Symposium on Access Control Models and Technologies, Jun. 2005.
21. J. H. Saltzer and M. D. Schroeder. The protection of information in computer systems. Proceedings of the IEEE, 63(9):1278-1308, Sep. 1975.
22. A. Shamir. How to share a secret. Communications of the ACM, 22(11):612-613, Nov. 1979.
23. L. Wang, D. Wijesekera, and S. Jajodia. A logic-based framework for attribute based access control. In 2nd ACM Workshop on Formal Methods in Security Engineering (FMSE 2004), pages 45-55, Oct. 2004.
24. V. Welch, F. Siebenlist, I. Foster, J. Bresnahan, K. Czajkowski, J. Gawor, C. Kesselman, S. Meder, L. Pearlman, and S. Tuecke. Security for grid services. In Twelfth International Symposium on High Performance Distributed Computing (HPDC-12), Jun. 2003.
25. W. H. Winsborough and N. Li. Towards practical automated trust negotiation. In Third IEEE International Workshop on Policies for Distributed Systems and Networks, Jun. 2002.
26. W. H. Winsborough, K. E. Seamons, and V. E. Jones. Automated trust negotiation. In DARPA Information Survivability Conference and Exposition, Jan. 2000.
27. M. Winslett, T. Yu, K. E. Seamons, A. Hess, J. Jacobson, R. Jarvis, B. Smith, and L. Yu. The TrustBuilder architecture for trust negotiation. IEEE Internet Computing, 6(6):30-37, Nov./Dec. 2002.
28. M. Winslett, C. Zhang, and P. A. Bonatti. PeerAccess: A logic for distributed authorization. In Proceedings of the 12th ACM Conference on Computer and Communications Security (CCS 2005), Nov. 2005.
29. T. Ylonen and C. Lonvick. SSH transport layer protocol. IETF Network Working Group Internet-Draft, Mar. 2005. 〈http://www.ietf.org/internet- drafts/draft-ietf-secsh-transport-24. txt〉.
30. T. Yu, M. Winslett, and K. E. Seamons. Supporting structured credentials and sensitive policies through interoperable strategies for automated trust negotiation. ACM Transactions on Information and System Security, 6(1), Feb. 2003.
31. Y. Zhang, H. Vin, L. Alvisi, W. Lee, and S. K. Dao. Heterogeneous networking: A new survivability paradigm. In 2001 Workshop on New Security Paradigms, pages 33-39, 2001.