Avoiding Delegation Subterfuge Using Linked Local Permission Names

  • Simon N. Foley
  • Samane Abdi
Part of the Lecture Notes in Computer Science book series (LNCS, volume 7140)


Trust Management systems are typically explicit in their assumption that principals are uniquely identifiable. However, the literature has not been as prescriptive concerning the uniqueness of the permissions delegated by principals. Delegation subterfuge may arise when there is ambiguity concerning the uniqueness and interpretation of a permission. As a consequence, delegation chains that are used by principals to prove authorization may not actually reflect the original intention of all of the participants in the chain. This paper describes an extension to SPKI/SDSI that uses the notion of linked local permissions to eliminate ambiguity concerning the interpretation of a permission and thereby avoid subterfuge attacks.


Delegation Statement Trust Management Compliance Check Trust Management System Local Permission 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Guidelines for the issuance and management of extended validation certificates. Tech. rep., CA/Browser Forum (2009),
  2. 2.
    Abadi, M.: On sdsi’s linked local name spaces. In: Proceedings of the 10th Computer Security Foundations Workshop (CSFW 1997), p. 98. IEEE Computer Society, Washington, DC, USA (1997)CrossRefGoogle Scholar
  3. 3.
    Blaze, M., Feigenbaum, J., Ioannidis, J., Keromytis, A.D.: The keynote trust-management system, version 2 (September 1999)Google Scholar
  4. 4.
    Blaze, M., Feigenbaum, J., Strauss, M.: Compliance Checking in the Policymaker Trust Management System. In: Hirschfeld, R. (ed.) FC 1998. LNCS, vol. 1465, pp. 254–274. Springer, Heidelberg (1998)CrossRefGoogle Scholar
  5. 5.
    CCITT Draft Recomendation: The Directory Authentication Framework, Version 7 (November 1987)Google Scholar
  6. 6.
    Clarke, D., Elien, J., Ellison, C., Fredette, M., Morcos, A., Rivest, R.L.: Certificate chain discovery in spki/sdsi. Journal of Computer Security 9(4), 285–322 (2001)Google Scholar
  7. 7.
    Ellison, C.: The nature of a usable PKI. Computer Networks 31, 823–830 (1999)CrossRefGoogle Scholar
  8. 8.
    Feeney, K., Lewis, D., O’Sullivan, D.: Service oriented policy management for web-application frameworks. IEEE Internet Computing Magazine 6(13), 39–47 (2009)CrossRefGoogle Scholar
  9. 9.
    Feeney, K., Brennan, R., Foley, S.N.: A trust model for capability delegation in federated policy systems. In: International Conference on Network and Service Management, pp. 226–229. IEEE (2010)Google Scholar
  10. 10.
    Foley, S.N., Zhou, H.: Authorisation subterfuge by delegation in decentralised networks. In: International Security Protocols Workshop, Cambridge, UK (April 2005)Google Scholar
  11. 11.
    Foley, S.: Noninterference analysis of delegation subterfuge. In: IEEE Computer Security Foundations Workshop, short-presentations (2006)Google Scholar
  12. 12.
    Li, J., Li, N., Winsborough, W., Mitchell, J.C.: Distributed Credential Chain Discovery in Trust Management. Journal of Computer Security 11(1) (2003)Google Scholar
  13. 13.
    Rivest, R.: S-expressions. In: Internet Draft draft-rivest-sexp-00.txt, IEFT Network Working Group (1997)Google Scholar
  14. 14.
    Zeller, T.: Purloined domain name is an unsolved mystery. New York Times (January 18, 2005)Google Scholar
  15. 15.
    Zhou, H., Foley, S.N.: A Logic for Analysing Subterfuge in Delegation Chains. In: Dimitrakos, T., Martinelli, F., Ryan, P.Y.A., Schneider, S. (eds.) FAST 2005. LNCS, vol. 3866, pp. 127–141. Springer, Heidelberg (2006)CrossRefGoogle Scholar
  16. 16.
    Zhou, H., Foley, S.N.: A framework for establishing decentralized secure coalitions. In: Proceedings of IEEE Computer Security Foundations Workshop. IEEE CS Press (2006)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2012

Authors and Affiliations

  • Simon N. Foley
    • 1
  • Samane Abdi
    • 1
  1. 1.Cork Constraint Computation Centre, Department of Computer ScienceUniversity College CorkIreland

Personalised recommendations