Loading...
Please wait, while we are loading the content...
A semantics for web services authentication (2004).
| Content Provider | CiteSeerX |
|---|---|
| Author | Bhargavan, Karthikeyan |
| Abstract | We consider the problem of specifying and verifying cryptographic security protocols for XML web services. The security specification WS-Security describes a range of XML security tokens, such as username tokens, public-key certificates, and digital signature blocks, amounting to a flexible vocabulary for expressing protocols. To describe the syntax of these tokens, we extend the usual XML data model with symbolic representations of cryptographic values. We use predicates on this data model to describe the semantics of security tokens and of sample protocols distributed with the Microsoft WSE implementation of WS-Security. By embedding our data model within Abadi and Fournet’s applied pi calculus, we formulate and prove security properties with respect to the standard Dolev-Yao threat model. Moreover, we informally discuss issues not addressed by the formal model. To the best of our knowledge, this is the first approach to the specification and verification of security protocols based on a faithful account of the XML wire format. |
| File Format | |
| Publisher Date | 2004-01-01 |
| Access Restriction | Open |
| Subject Keyword | Faithful Account Xml Wire Format Digital Signature Block Cryptographic Value Microsoft Wse Implementation Security Specification Ws-security Pi Calculus First Approach Sample Protocol Cryptographic Security Protocol Web Service Authentication Xml Web Service Username Token Public-key Certificate Symbolic Representation Formal Model Usual Xml Data Model Security Protocol Security Property Standard Dolev-yao Threat Model Data Model Xml Security Token Security Token Flexible Vocabulary |
| Content Type | Text |
