Towards an efficient and language-agnostic compliance checker for trust negotiation systems
Proceedings of the 2008 ACM symposium on Information, computer and communications security
Privacy-preserving trust verification
Proceedings of the 15th ACM symposium on Access control models and technologies
Supporting privacy preferences in credential-based interactions
Proceedings of the 9th annual ACM workshop on Privacy in the electronic society
Automated trust negotiation in autonomic environments
IWSOS'07 Proceedings of the Second international conference on Self-Organizing Systems
Compliance checking for usage-constrained credentials in trust negotiation systems
ISC'12 Proceedings of the 15th international conference on Information Security
| Hi-index | 0.00 |
Automated trust negotiation is the process of establishingtrust between entities with no prior relationship through theiterative disclosure of digital credentials. One approach tonegotiating trust is for the participants to exchange accesscontrol policies to inform each other of the requirementsfor establishing trust. When a policy is received at run-time,a compliance checker determines which credentialssatisfy the policy so they can be disclosed. In situationswhere several sets of credentials satisfy a policy and someof the credentials are sensitive, a compliance checker thatgenerates all the sets is necessary to insure that the negotiationsucceeds whenever possible. Compliance checkersdesigned for trust management do not usually generate allthe satisfying sets. In this paper, we present two practicalalgorithms for generating all satisfying sets given a compliancechecker that generates only one set. The ability togenerate all of the combinations provides greater flexibilityin how the system or user establishes trust. For example, theleast sensitive credential combination could be disclosedfirst. These ideas have been implemented in TrustBuilder,our prototype system for trust negotiation.