Skip to Main content Skip to Navigation
Conference papers

Noninterference Analysis of Delegation Subterfuge in Distributed Authorization Systems

Abstract : A principal carrying out a delegation may not be certain about the state of its delegation graph as it may have been perturbed by an attacker. This perturbation may come about from the attacker concealing the existence of selected delegation certificates and/or injecting new delegation certificates. As a consequence of this delegation subterfuge the principal may violate its own policy that guides delegation actions. This paper considers the verification of the absence of subterfuge in systems that accept and issue delegation certificates. It is argued that this absence of subterfuge is not a safety property and a non-interference style security-property based interpretation is proposed.
Document type :
Conference papers
Complete list of metadata

Cited literature [23 references]  Display  Hide  Download

https://hal.inria.fr/hal-01468171
Contributor : Hal Ifip <>
Submitted on : Wednesday, February 15, 2017 - 11:33:18 AM
Last modification on : Monday, June 15, 2020 - 1:38:03 PM
Long-term archiving on: : Tuesday, May 16, 2017 - 1:13:33 PM

File

978-3-642-38323-6_14_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Simon Foley. Noninterference Analysis of Delegation Subterfuge in Distributed Authorization Systems. 7th Trust Management (TM), Jun 2013, Malaga, Spain. pp.193-207, ⟨10.1007/978-3-642-38323-6_14⟩. ⟨hal-01468171⟩

Share

Metrics

Record views

160

Files downloads

316