A calculus of trust and its application to PKI and identity management

Jingwei Huang; David Nicol

doi:10.1145/1527017.1527021

A calculus of trust and its application to PKI and identity management

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

We introduce a formal semantics based calculus of trust that explicitly represents trust and quantifies the risk as-sociated with trust in public key infrastructure (PKI) and identity management (IdM). We then show by example how to formally represent trust relationships and quantitatively evaluate the risk associated with trust in public key certifi-cate chains. In the context of choosing a certificate chain, our research shows that the shortest chain need not be the most trustworthy, and that it may make sense to compare the trustworthiness of a potential chain against a thresh-old to govern acceptance, changing the problem to finding a chain with sufficiently high trustworthiness. Our calculus also shows how quantified trust relationships among CAs can be combined to achieve an overall trust assessment of an ofiered certificate.

Original language	English (US)
Title of host publication	IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet
Editors	Kent Seamons, Neal McBurnett, Tim Polk
Publisher	Association for Computing Machinery
Pages	23-37
Number of pages	15
ISBN (Electronic)	9781605584744
DOIs	https://doi.org/10.1145/1527017.1527021
State	Published - Apr 14 2009
Event	8th Symposium on Identity and Trust on the Internet, IDtrust 2009 - Gaithersburg, United States Duration: Apr 14 2009 → Apr 16 2009

Publication series

Name	ACM International Conference Proceeding Series
Volume	Part F128834

Other

Other	8th Symposium on Identity and Trust on the Internet, IDtrust 2009
Country/Territory	United States
City	Gaithersburg
Period	4/14/09 → 4/16/09

Keywords

Identity management
PKI
Risk assess-ment
Semantics of trust
Social networks
Trust modeling
Uncertainty

ASJC Scopus subject areas

Software
Human-Computer Interaction
Computer Vision and Pattern Recognition
Computer Networks and Communications

Online availability

10.1145/1527017.1527021

Library availability

Discover UIUC Full Text

Cite this

Huang, J., & Nicol, D. (2009). A calculus of trust and its application to PKI and identity management. In K. Seamons, N. McBurnett, & T. Polk (Eds.), IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet (pp. 23-37). (ACM International Conference Proceeding Series; Vol. Part F128834). Association for Computing Machinery. https://doi.org/10.1145/1527017.1527021

A calculus of trust and its application to PKI and identity management. / Huang, Jingwei; Nicol, David.
IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet. ed. / Kent Seamons; Neal McBurnett; Tim Polk. Association for Computing Machinery, 2009. p. 23-37 (ACM International Conference Proceeding Series; Vol. Part F128834).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Huang, J & Nicol, D 2009, A calculus of trust and its application to PKI and identity management. in K Seamons, N McBurnett & T Polk (eds), IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet. ACM International Conference Proceeding Series, vol. Part F128834, Association for Computing Machinery, pp. 23-37, 8th Symposium on Identity and Trust on the Internet, IDtrust 2009, Gaithersburg, United States, 4/14/09. https://doi.org/10.1145/1527017.1527021

@inproceedings{11cabfc87c204828968c5480181d23c8,

title = "A calculus of trust and its application to PKI and identity management",

abstract = "We introduce a formal semantics based calculus of trust that explicitly represents trust and quantifies the risk as-sociated with trust in public key infrastructure (PKI) and identity management (IdM). We then show by example how to formally represent trust relationships and quantitatively evaluate the risk associated with trust in public key certifi-cate chains. In the context of choosing a certificate chain, our research shows that the shortest chain need not be the most trustworthy, and that it may make sense to compare the trustworthiness of a potential chain against a thresh-old to govern acceptance, changing the problem to finding a chain with sufficiently high trustworthiness. Our calculus also shows how quantified trust relationships among CAs can be combined to achieve an overall trust assessment of an ofiered certificate.",

keywords = "Identity management, PKI, Risk assess-ment, Semantics of trust, Social networks, Trust modeling, Uncertainty",

author = "Jingwei Huang and David Nicol",

year = "2009",

month = apr,

day = "14",

doi = "10.1145/1527017.1527021",

language = "English (US)",

series = "ACM International Conference Proceeding Series",

publisher = "Association for Computing Machinery",

pages = "23--37",

editor = "Kent Seamons and Neal McBurnett and Tim Polk",

booktitle = "IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet",

address = "United States",

note = "8th Symposium on Identity and Trust on the Internet, IDtrust 2009 ; Conference date: 14-04-2009 Through 16-04-2009",

}

TY - GEN

T1 - A calculus of trust and its application to PKI and identity management

AU - Huang, Jingwei

AU - Nicol, David

PY - 2009/4/14

Y1 - 2009/4/14

N2 - We introduce a formal semantics based calculus of trust that explicitly represents trust and quantifies the risk as-sociated with trust in public key infrastructure (PKI) and identity management (IdM). We then show by example how to formally represent trust relationships and quantitatively evaluate the risk associated with trust in public key certifi-cate chains. In the context of choosing a certificate chain, our research shows that the shortest chain need not be the most trustworthy, and that it may make sense to compare the trustworthiness of a potential chain against a thresh-old to govern acceptance, changing the problem to finding a chain with sufficiently high trustworthiness. Our calculus also shows how quantified trust relationships among CAs can be combined to achieve an overall trust assessment of an ofiered certificate.

AB - We introduce a formal semantics based calculus of trust that explicitly represents trust and quantifies the risk as-sociated with trust in public key infrastructure (PKI) and identity management (IdM). We then show by example how to formally represent trust relationships and quantitatively evaluate the risk associated with trust in public key certifi-cate chains. In the context of choosing a certificate chain, our research shows that the shortest chain need not be the most trustworthy, and that it may make sense to compare the trustworthiness of a potential chain against a thresh-old to govern acceptance, changing the problem to finding a chain with sufficiently high trustworthiness. Our calculus also shows how quantified trust relationships among CAs can be combined to achieve an overall trust assessment of an ofiered certificate.

KW - Identity management

KW - PKI

KW - Risk assess-ment

KW - Semantics of trust

KW - Social networks

KW - Trust modeling

KW - Uncertainty

UR - http://www.scopus.com/inward/record.url?scp=85010986837&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85010986837&partnerID=8YFLogxK

U2 - 10.1145/1527017.1527021

DO - 10.1145/1527017.1527021

M3 - Conference contribution

AN - SCOPUS:85010986837

T3 - ACM International Conference Proceeding Series

SP - 23

EP - 37

BT - IDtrust 2009 - Proceedings of the 8th Symposium on Identity and Trust on the Internet

A2 - Seamons, Kent

A2 - McBurnett, Neal

A2 - Polk, Tim

PB - Association for Computing Machinery

T2 - 8th Symposium on Identity and Trust on the Internet, IDtrust 2009

Y2 - 14 April 2009 through 16 April 2009

ER -

A calculus of trust and its application to PKI and identity management

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Cite this