Skip to main content
SpringerLink
Log in

An Introduction to Trust Negotiation

  • Conference paper
  • First Online:
Trust Management (iTrust 2003)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2692))

Included in the following conference series:

Abstract

The last decade of improvement in service offerings over the Internet offers the hope that many kinds of sensitive interactions between strangers can be carried out electronically, without requiring physical transmission of paper credentials to establish trust. In this short paper, we describe one way of converting the current paper-based approach to establishing trust into an electronic approach that minimizes human intervention. We also describe the theoretical and systems issues that are raised by this approach.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. J. Biskup, U. Flegel, and Y. Karabulut. Secure Mediation: Requirements, Design, and Architecture. Journal of Computer Security, 2002.

    Google Scholar 

  2. J. Biskup and Y. Karabulut. AHybrid PKI Model with an Application for Secure Mediation. Submitted for publication, 2002.

    Google Scholar 

  3. P. Bonatti and P. Samarati. Regulating Service Access and Information Release on the Web. In ACM Conference on Computer and Communications Security, Athens, November 2000.

    Google Scholar 

  4. S. Brands. Rethinking Public Key Infrastructures and Digital Certificates. MIT Press, 2000.

    Google Scholar 

  5. T. Dierks and C. Allen. The TLS Protocol Version 1.0. In http://www.ietf.org/rfc/rfc2246.txt, January 1999.

  6. A. Herzberg, J. Mihaeli, Y. Mass, D. Naor, and Y. Ravid. Access Control Meets Public Key Infrastructure, Or: Assigning Roles to Strangers. In IEEE Symposium on Security and Privacy, Oakland, CA, May 2000.

    Google Scholar 

  7. A. Hess, J. Jacobson, H. Mills, R. Wamsley, K. Seamons, and B. Smith. Advanced Client/Server Authentication in TLS. In Network and Distributed System Security Symposium, San Diego, CA, February 2002.

    Google Scholar 

  8. A. Hess and K. E. Seamons. An Access Control Model for Dynamic Client Content. In 8th ACM Symposium on Access Control Models and Technologies, Como, Italy, June 2003.

    Google Scholar 

  9. N. Li, J. C. Mitchell, and W. H. Winsborough. Design of a Role-based Trustmanagement Framework. In IEEE Symposium on Security and Privacy, Oakland, May 2002.

    Google Scholar 

  10. N. Li, W. Winsborough, and J. C. Mitchell. Distributed Credential Chain Discovery in Trust Management. Journal of Computer Security, 11, February 2003.

    Google Scholar 

  11. N. Li, W. H. Winsborough, and J. C. Mitchell. Beyond Proof-of-compliance: Safety and Availability Analysis in Trust Management. In IEEE Symposium on Security and Privacy, Berkeley, California, May 2003.

    Google Scholar 

  12. P. Persiano and I. Visconti. User Privacy Issues Regarding Certificates and the TLS Protocol. In ACM Conference on Computer and Communications Security, Athens, Greece, 2000.

    Google Scholar 

  13. K. Seamons, M. Winslett, T. Yu, B. Smith, E. Child, J. Jacobson, H. Mills, and L. Yu. Requirements for Policy Languages for Trust Negotiation. In IEEE 3rd International Workshop on Policies for Distributed Systems and Networks, June 2002.

    Google Scholar 

  14. W. Winsborough and N. Li. Towards Practical Trust Negotiation. In IEEE 3rd International Workshop on Policies for Distributed Systems and Networks, June 2002.

    Google Scholar 

  15. W. H. Winsborough and N. Li. Protecting Sensitive Attributes in Automated Trust Negotiation. In Workshop on Privacy in the Electronic Society, Washington, DC, November 2003.

    Google Scholar 

  16. T. Yu and M. Winslett. AUnified Scheme for Resource Protection. In IEEE Symposium on Security and Privacy, Berkeley, California, May 2003.

    Google Scholar 

  17. T. Yu, M. Winslett, and K. E. Seamons. Supporting Structured Credentials and Sensitive Policies through Interoperable Strategies for Automated Trust Negotiation. ACM Transactions on Information and System Security, 6, February 2003.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science, University of Illinois, Urbana, IL, 61801, USA

    Marianne Winslett

Authors
  1. Marianne Winslett
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer and Information Sciences Livingstone Tower, University of Strathclyde, 26 Richmond Street, Glasgow, G1 1XH, UK

    Paddy Nixon  & Sotirios Terzis  & 

Rights and permissions

Reprints and permissions

Copyright information

© 2003 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Winslett, M. (2003). An Introduction to Trust Negotiation. In: Nixon, P., Terzis, S. (eds) Trust Management. iTrust 2003. Lecture Notes in Computer Science, vol 2692. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44875-6_20

Download citation

  • DOI: https://doi.org/10.1007/3-540-44875-6_20

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-40224-4

  • Online ISBN: 978-3-540-44875-4

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation