CNR Institutional Research Information System

We continue our work on modelling and analysing security issues of an identity federation protocol for convergent networks. This protocol was proposed by Telecom Italia as a solution to allow end users access to services on the web through different access networks, without explicitly providing any credentials, while the service providers can trust the user's identity information provided by the access networks and access some user data. As an intermediate step towards a full-blown formal security analysis of this protocol, we specify one specific user scenario in the process algebra Crypto-CCS and verify its vulnerability w.r.t. a man-in-the-middle attack with the model checker PaMoChSA.

Modelling and Analysing an Identity Federation Protocol: Federated Network Providers Scenario

Ter Beek M;Moiso C;Petrocchi M

2007

Abstract

We continue our work on modelling and analysing security issues of an identity federation protocol for convergent networks. This protocol was proposed by Telecom Italia as a solution to allow end users access to services on the web through different access networks, without explicitly providing any credentials, while the service providers can trust the user's identity information provided by the access networks and access some user data. As an intermediate step towards a full-blown formal security analysis of this protocol, we specify one specific user scenario in the process algebra Crypto-CCS and verify its vulnerability w.r.t. a man-in-the-middle attack with the model checker PaMoChSA.

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno
	
				2007
			
	Strutture organizzative
	
				Istituto di informatica e telematica - IIT
Istituto di Scienza e Tecnologie dell'Informazione "Alessandro Faedo" - ISTI
			
	Parole chiave
	
				Network protocols
Model checking
Process algebra
Security
			
	Appare nelle tipologie:
	
				04.01 Contributo in Atti di convegno

File in questo prodotto:

File	Dimensione	Formato
prod_83611-doc_79500.pdf accesso aperto Descrizione: Modelling and Analysing an Identity Federation Protocol: Federated Network Providers Scenario Tipologia: Versione Editoriale (PDF) Dimensione 347.87 kB Formato Adobe PDF Visualizza/Apri	347.87 kB	Adobe PDF	Visualizza/Apri
prod_83611-doc_154229.pdf accesso aperto Descrizione: Modelling and Analysing an Identity Federation Protocol: Federated Network Providers Scenario Tipologia: Versione Editoriale (PDF) Dimensione 500.98 kB Formato Adobe PDF Visualizza/Apri	500.98 kB	Adobe PDF	Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/20.500.14243/75870

Citazioni

ND

ND

ND

social impact