Skip to main content
SpringerLink
Log in

Reasoning about Accountability within Delegation

  • Conference paper
  • First Online:
Information and Communications Security (ICICS 2001)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2229))

Included in the following conference series:

Abstract

We propose a framework for the analysis of delegation protocols. Our framework allows to analyse how accountability is transferred (or kept) by delegator when she transfers some of her rights to the delegate. The ability to trace how accountability is distributed among principals of a system is crucial in many transactions that have a legal value, because accountability is usually a prerequisite to guarantee other well known security properties (e.g., non repudiation). Our approach starts from the notion of “provability” to formalise accountability. Then, we introduce new specifications for the analysis of delegation protocols and the distribution of credentials necessary to exercise delegated rights.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. M. Burrows, M. Abadi, and R.M. Needham. A logic of Authentication. ACM Transaction on Computer Systems, 8(1), Febraury 1990.

    Google Scholar 

  2. B. Crispo. Delegation protocols for electronic commerce. In Proceedings of the 6th IEEE Symposium on computers and communications (ISCC01), Hammamet, Tunisia. IEEE press, 2001.

    Google Scholar 

  3. B. Crispo and M. Lomas. A Certification Scheme for Electronic Commerce. In Security Protocol Workshop, volume LNCS vol. 1189. Springer-Verlag, 1997.

    Google Scholar 

  4. R. Kailar. Reasoning about Accountability in Protocol for Electronic Commerce. In Proceedings of the IEEE Symposium on Security and Privacy, 1995.

    Google Scholar 

  5. M.R. Low and B. Christianson. Self Authenticating Proxies. Computer Journal, 37(5):422–428, October 1994.

    Article  Google Scholar 

  6. K.R. Sollins. Cascaded Authentication. In Proceedings of the IEEE Conference on Security and Privacy, April 1988.

    Google Scholar 

  7. J.J. Tardo and K. Alagappan. SPX: Global Authentication Using Public Key Certificates. In Proceedings of the IEEE Symposium on Security and Privacy, 1991.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Cryptomathic S.p.A., Corso Svizzera, 185 - 10149, Torino, Italy

    Bruno Crispo

  2. Dipartimento di Informatica, Università di Torino, Corso Svizzera, 185 - 10149, Torino, Italy

    Giancarlo Ruffo

Authors
  1. Bruno Crispo
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Giancarlo Ruffo
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Engineering Research Center for Information Security Technology (ERCIST), Chinese Academy of Sciences, P.O. Box 8718, 100080, Beijing, China

    Sihan Qing

  2. NTT Labs, 1-1 Hikarinooka, 239-0847, Yokosuka-shi, Japan

    Tatsuaki Okamoto

  3. Oracle Corporation, 500 Oracle Parkway, 94065, Redwood Shores, CA, USA

    Jianying Zhou

Rights and permissions

Reprints and permissions

Copyright information

© 2001 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Crispo, B., Ruffo, G. (2001). Reasoning about Accountability within Delegation. In: Qing, S., Okamoto, T., Zhou, J. (eds) Information and Communications Security. ICICS 2001. Lecture Notes in Computer Science, vol 2229. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-45600-7_29

Download citation

  • DOI: https://doi.org/10.1007/3-540-45600-7_29

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-42880-0

  • Online ISBN: 978-3-540-45600-1

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation