2nd International ICST Conference on Scalable Information Systems

Research Article

A Complete and Efficient Strategy Based on Petri Net in Automated Trust Negotiation

Download125 downloads
  • @INPROCEEDINGS{10.4108/infoscale.2007.888,
        author={Yan  He and Miaoliang  Zhu},
        title={A Complete and Efficient Strategy Based on Petri Net in Automated Trust Negotiation},
        proceedings={2nd International ICST Conference on Scalable Information Systems},
        proceedings_a={INFOSCALE},
        year={2010},
        month={5},
        keywords={automated trust negotiation negotiation strategy Negotiation Petri Net.},
        doi={10.4108/infoscale.2007.888}
    }
    
  • Yan He
    Miaoliang Zhu
    Year: 2010
    A Complete and Efficient Strategy Based on Petri Net in Automated Trust Negotiation
    INFOSCALE
    ICST
    DOI: 10.4108/infoscale.2007.888
Yan He1,*, Miaoliang Zhu2,*
  • 1: College of Computer Science, Zhejiang University Zhejiang Financial Profession College Hangzhou, China
  • 2: College of Computer Science, Zhejiang University Hangzhou, China
*Contact email: heheyan@126.com, zhum@zju.edu.cn

Abstract

Traditional security model, where the identity of all possible requesting subjects must be pre-registered in advance, is not suitable for the distributed applications with strong real-time requirements, especially recently popular P2P networks and Grid computing. A promising approach is represented by automated trust negotiation, which establishes trust between strangers through the exchange of digital credentials and the use of access control policies. An automated trust negotiation strategy needs to be adopted to establish trust between two parties based on their disclosure policies. Previously proposed negotiation strategies may fail when in fact success is possible, disclose irrelevant credentials, or have high communication or computational complexity. In this paper, we model the policies participating trust negotiation as Negotiation Petri Net and propose a trust negotiation Strategy based on Negotiation Petri Net (SNPN) by combining the characteristics of Negotiation Petri Net architecture with the behaviors of auto trust negotiation. We prove that SNPN is efficient with O(n) communication complexity and O(nm) computational complexity including Negotiation Petri Net building process and the negotiation process in the worst case, where n is the number of credentials and m is the size of the credential disclosure policies. Meanwhile SNPN is complete and makes sure that no irrelevant credentials will be disclosed during negotiations.