Abstract
We propose a framework for the analysis of delegation protocols. Our framework allows to analyse how accountability is transferred (or kept) by delegator when she transfers some of her rights to the delegate. The ability to trace how accountability is distributed among principals of a system is crucial in many transactions that have a legal value, because accountability is usually a prerequisite to guarantee other well known security properties (e.g., non repudiation). Our approach starts from the notion of “provability” to formalise accountability. Then, we introduce new specifications for the analysis of delegation protocols and the distribution of credentials necessary to exercise delegated rights.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
M. Burrows, M. Abadi, and R.M. Needham. A logic of Authentication. ACM Transaction on Computer Systems, 8(1), Febraury 1990.
B. Crispo. Delegation protocols for electronic commerce. In Proceedings of the 6th IEEE Symposium on computers and communications (ISCC01), Hammamet, Tunisia. IEEE press, 2001.
B. Crispo and M. Lomas. A Certification Scheme for Electronic Commerce. In Security Protocol Workshop, volume LNCS vol. 1189. Springer-Verlag, 1997.
R. Kailar. Reasoning about Accountability in Protocol for Electronic Commerce. In Proceedings of the IEEE Symposium on Security and Privacy, 1995.
M.R. Low and B. Christianson. Self Authenticating Proxies. Computer Journal, 37(5):422–428, October 1994.
K.R. Sollins. Cascaded Authentication. In Proceedings of the IEEE Conference on Security and Privacy, April 1988.
J.J. Tardo and K. Alagappan. SPX: Global Authentication Using Public Key Certificates. In Proceedings of the IEEE Symposium on Security and Privacy, 1991.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Crispo, B., Ruffo, G. (2001). Reasoning about Accountability within Delegation. In: Qing, S., Okamoto, T., Zhou, J. (eds) Information and Communications Security. ICICS 2001. Lecture Notes in Computer Science, vol 2229. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45600-7_29
Download citation
DOI: https://doi.org/10.1007/3-540-45600-7_29
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-42880-0
Online ISBN: 978-3-540-45600-1
eBook Packages: Springer Book Archive