Abstract
A principal carrying out a delegation may not be certain about the state of its delegation graph as it may have been perturbed by an attacker. This perturbation may come about from the attacker concealing the existence of selected delegation certificates and/or injecting new delegation certificates. As a consequence of this delegation subterfuge the principal may violate its own policy that guides delegation actions. This paper considers the verification of the absence of subterfuge in systems that accept and issue delegation certificates. It is argued that this absence of subterfuge is not a safety property and a non-interference style security-property based interpretation is proposed.
Highlights
Trust Management systems [1,2,3,4] provide a decentralized approach for managing delegation of trust between principals
A delegation subterfuge attack [5,6] can occur when there is the potential for ambiguity in interpreting a delegated permission
If one considers delegation states to be analogous to system traces the definition of delegation security/subterfuge freedom proposed in this paper is similar, at least in intent, to this definition
Summary
Trust Management systems [1,2,3,4] provide a decentralized approach for managing delegation of trust between principals. The literature has generally not been as prescriptive in terms of how permission identifiers should be tied to the actions that they authorize While central authorities such as the Internet Corporation for Assigned Names and Numbers (ICANN) might, in principle, provide identifiers that could be used for this purpose, a malicious principal can still choose to ignore or misrepresent the interpretation. The victim may violate the requirements that guide its own delegation actions It is argued [7] that the problem of delegation subterfuge is analogous to the problem of a message freshness-attack
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
