Interactive credential negotiation for stateful business processes

H. Koshutanski, F. Massacci

Research output: Chapter in Book / Report / Conference proceedingConference contributionAcademicpeer-review


Business Processes for Web Services are the new paradigm for lightweight enterprise integration. They cross organizational boundaries, are provided by entities that see each other just as business partners, and require access control mechanisms based on trust management. Stateful Business Processes, enforcing separation of duties or service limitations based on past or current usage, pose additional research challenges. Clients, which may not know the right set of credentials to supply to each partner, may end up in dead-ends and servers should help them find out what must be revoked and what missing is that grant access to a particular resource. We propose a logical framework and an interactive algorithm based on negotiation of credentials for access control that works for Stateful Business Processes. We show that our algorithm is sound (no grant is given to unauthorized clients), complete (authorized clients get grant) and resistant against DoS attempt. © Springer-Verlag Berlin Heidelberg 2005.
Original languageEnglish
Title of host publicationTrust Management: Third International Conference, iTrust 2005, Proceedings
PublisherSpringer Verlag
Publication statusPublished - 2005
Externally publishedYes
EventThird International Conference on Trust Management, iTrust 2005 - , France
Duration: 23 May 200526 May 2005

Publication series

NameLecture Notes in Computer Science
ISSN (Print)0302-9743


ConferenceThird International Conference on Trust Management, iTrust 2005


Dive into the research topics of 'Interactive credential negotiation for stateful business processes'. Together they form a unique fingerprint.

Cite this