On Distributed Security Transactions that use Secure Transport Protocols

Gavin Lowe

In this talk I will consider techniques for designing and analysing distributed security transactions. I will present a layered approach, with a high-level security transaction layer running on top of a lower-level secure transport protocol. The secure transport protocol provides protection against dishonest outsiders, while the transaction layer can be designed to provide protection against dishonest insiders. I will specify generic services that one might expect such secure transport protocols to provide. I will give examples of this layered approach, with the aim of demonstrating that the separation of concerns allows for a cleaner, more intuitive design. I will describe how to analyse such a layered security architecture.

This is joint work with Philippa Broadfoot.