| ¡¡ | Chinese Journal of Computers Full Text |
| Title | Parsimonious Semantic Trust Negotiation |
| Authors | ZHANG Yan1) FEN Deng-Guo2) |
| Address | 1)(State Key Laboratory of Information Security, Institute of Software, Chinese Academy of Sciences, Beijing 100190) 2)(National Engineering Research Center of Information Security, Beijing 100190) |
| Year | 2009 |
| Issue | No.10(1989¡ª2003) |
| Abstract & Background | Abstract Automated Trust Negotiation (ATN) is a process in which two unfamiliar entities exchange their digital attribute certificates in turn to set up mutual trust relationship with each other. Since existing ATN frameworks require entities to release entire attribute certificates to prove that they satisfy the identity constraint condition stated by the other entities¡¯ access control policies, private identity information of entities is often over-revealed in many circumstances. In this paper, the authors propose a novel parsimonious semantic trust negotiation framework in which entities can build trust relationship by exchanging DL-TNL semantic identity assertions instead of entire attribute certificates. This framework can greatly reduce the degree of disclosed private identity information. Under the framework, the authors propose a correct, complete and efficient parsimonious semantic trust negotiation strategy to allow the negotiation agencies of participants to compute and disclose a satisfying set of DL-TNL assertions which contains least private identity information at every exchange step. In a word, the parsimonious semantic trust negotiation strategy can minimize the disclosed private identity information in the trust negotiation processes and guarantees the resource requesters participating in the processes to get the access rights finally if there does exist a theoretical successful trust negotiation sequence. All of the proofs about the properties of the strategy are given in this paper, so are the relevant compliance checking algorithms and their analyses. Keywords automated trust negotiation; semantic method; privacy protection; trust negotiation strategy; compliance checking |