Towards security analyses of an identity federation protocol for Web services in convergent networks (Contributo in atti di convegno)

Type
Label
  • Towards security analyses of an identity federation protocol for Web services in convergent networks (Contributo in atti di convegno) (literal)
Anno
  • 2007-01-01T00:00:00+01:00 (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#doi
  • 10.1109/AICT.2007.46 (literal)
Alternative label
  • [1] Petrocchi M., [2] Ter Beek M., [3] Moiso C. (2007)
    Towards security analyses of an identity federation protocol for Web services in convergent networks
    in 3rd Advanced International Conference on Telecommunications. AICT'07, Morne,Mauritius, 13-19 May 2007
    (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#autori
  • [1] Petrocchi M., [2] Ter Beek M., [3] Moiso C. (literal)
Pagina inizio
  • 31 (literal)
Pagina fine
  • 31 (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#url
  • http://doi.ieeecomputersociety.org/10.1109/AICT.2007.46 (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#note
  • In: 3rd Advanced International Conference on Telecommunications. AICT'07 (Mauritius, 13-19 Maggio 2007). Proceedings, pp. 1 - 6. IEEE Computer Society, Los Alamitos, CA, 2007. (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#descrizioneSinteticaDelProdotto
  • ABSTRACT: We describe a formal approach to the analysis of security aspects of an identity federation protocol for web services in convergent networks. This network protocol was proposed by Telecom Italia as a solution to allow end users to access services on the web through different access networks without explicitly providing any credentials, while the service providers can trust the user's identity information provided by the access networks and access some user data. As a first step towards a fullblown formal security analysis of the protocol, we specify three user scenarios in the process algebra Crypto-CCS and verify the vulnerability of one of these specifications w.r.t. a man-in-themiddle attack with the model checker PaMoChSA. (literal)
Note
  • Scopu (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#affiliazioni
  • [1] CNR-IIT, Pisa, Italy; [2] CNR-ISTI, Pisa, Italy; [3] Telecom Italia, Torino, Italy (literal)
Titolo
  • Towards security analyses of an identity federation protocol for Web services in convergent networks (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#isbn
  • 0-7695-2843-0 (literal)
Abstract
  • We describe a formal approach to the analysis of security aspects of an identity federation protocol for web services in convergent networks. This network protocol was proposed by Telecom Italia as a solution to allow end users to access services on the web through different access networks without explicitly providing any credentials, while the service providers can trust the user's identity information provided by the access networks and access some user data. As a first step towards a fullblown formal security analysis of the protocol, we specify three user scenarios in the process algebra Crypto-CCS and verify the vulnerability of one of these specifications w.r.t. a man-in-themiddle attack with the model checker PaMoChSA. (literal)
Editore
Prodotto di
Autore CNR
Insieme di parole chiave

Incoming links:


Prodotto
Autore CNR di
Editore di
Insieme di parole chiave di
data.CNR.it