modelling and analysing an identity federation protocol
play

Modelling and Analysing an Identity Federation Protocol: Federated - PowerPoint PPT Presentation

Aug 21, 2023 •275 likes •559 views

Modelling and Analysing an Identity Federation Protocol: Federated Network Providers Scenario Maurice ter Beek (FMT, ISTICNR, Pisa, Italy) joint work with Marinella Petrocchi (IITCNR, Pisa, Italy) Corrado Moiso (Telecom Italia, Torino,

  1. Modelling and Analysing an Identity Federation Protocol: Federated Network Providers Scenario Maurice ter Beek (FMT, ISTI–CNR, Pisa, Italy) joint work with Marinella Petrocchi (IIT–CNR, Pisa, Italy) Corrado Moiso (Telecom Italia, Torino, Italy) YR-SOC 2007, Leicester, UK

  2. Outline of the talk • Setting • Identity federation protocols • Telecom Italia’s network protocol for identity federation • Modelling and analysis – Analysis approach – Crypto-CCS specification language – Formalisation of two scenarios of the network protocol – Analyses and results of a man-in-the-middle attack • Conclusions and future work YR-SOC 2007, Leicester, UK 2/28

  3. Setting • Formal modelling and analysis of security protocols is an active branch of computer security • Many techniques proved successful (based on process algebras, authentication logic, type systems, etc.) • We formally specify three user scenarios of a network protocol for identity federation proposed by Telecom Italia, at the same time adding primitives to assure basic security properties • We then model check our specifications to test their correctness YR-SOC 2007, Leicester, UK 3/28

  4. Identity federation protocols • Growing interest in defining telecommunication protocols that allow a user to access all services belonging to the same circle of trust with a (cross-domain) single sign-on • Process of identity federation : federating an entity’s identity and allowing access to services without explicitly presenting one’s credentials time and again • Liberty Alliance : consortium formed to define processes supporting the federation of identities • Specifications make use of the XML-based Security Assertion Markup Language SAML YR-SOC 2007, Leicester, UK 4/28

  5. Security features • Limit access to authenticated and authorized users • Preserve privacy of users: – protect sensitive information (e.g. network addresses) – guarantee identities without explicitly discovering them – only disclose information related to the specific service for which access is requested (e.g. destination preferences if the service is a travel agency) • (Optional) Grant users anonymous access to services (e.g. for temporary federations) YR-SOC 2007, Leicester, UK 5/28

  6. Federating identities example • ABC airlines and XYZ car rental company decide to create a circle of trust • Mary has accounts on both ABC’s and XYZ’s web sites • She logs into ABC’s web site – ” You may share (or federate) your ABC online identity with members of our affinity group, which includes XYZ ” • Mary likes the idea, so she gives her permission • Mary goes to XYZ – ” We see you’re logged into ABC’s web site. Would you like to link your XYZ online identity with your ABC online identity? ” OK! ⇒ In the future, when Mary goes to either ABC’s or XYZ’s web site, she only needs to log into one to be automatically logged into the other. YR-SOC 2007, Leicester, UK 6/28

  7. Federated identity architecture YR-SOC 2007, Leicester, UK 7/28

  8. Some main features • Authentication is delegated to an identity provider , allowing single sign-ons • A user token is a sequence of characters that identifies the user to each pair of parties in the circle of trust • User tokens are opaque, i.e. have meaning only for the two parties that federate their users’ identities • Problem: handle identity and authentication information of end users that access services on convergent networks through multiple telecommunication channels (e.g. ADSL, GPRS/UMTS, SMS) YR-SOC 2007, Leicester, UK 8/28

  9. The network protocol proposed by Telecom Italia @ ICIN’06 • is an identity federation protocol • permits users to access services through different access networks (e.g., fixed and mobile) • gives the network provider the role of identity provider, based on the idea that providers are in a privileged position to pass user information obtained within their security domain to the application level ⇒ Services thus rely on the authentication information provided by the access network YR-SOC 2007, Leicester, UK 9/28

  10. Token injector mechanism • intercepts HTTP access requests • (generates) and injects tokens • forwards them to the applications YR-SOC 2007, Leicester, UK 10/28

  11. User Agent Identity Provider Service Provider (UA) Token Injector (SP) (IdP/TI) 1. HTTP Request http://www.SP.com/register.html 2. Would you like to federate? NO 3. Local registration answer 4. Request of registration+federation YES Local elaborations Request interrupted 5. Verify authentication of Client on basis of IP address 6. a. IdP/TI generates opaque−id b. IdP/TI creates SAML Assertion with <AuthnStatement> 7. c. SAML Assertion may also contain <AttributeStatement> d. IdP/TI inserts SAML Assertion in SAML <Response> "Inject" SAML <Response> in the Request 8. HTTP Request (POST) http://www.SP.com/registerTravel.jsp + SAML <Response> 9. SP receives, in SAML <Response>, also the opaque−id 10. The following two situations may occur: Case 1. SP needs no further info and the UA directly accesses the service (step 15) Case 2. SP needs specific profile info from the service, which must be provided by the UA, via a "form" 11. HTTP Response (200−OK,"form") 12. UA fills in the "form" 13. HTTP Request (POST) 14. SP stores the received info 15. HTTP Response (200−OK,access.jsp) YR-SOC 2007, Leicester, UK 11/28

  12. Multiple access networks YR-SOC 2007, Leicester, UK 12/28

  13. User Mobile Fixed Service Client Operator Operator Provider (U) (MO) (FO) (SP) 1. Request of registration+federation Local elaborations 2. Search repository for token associated to U YES 3. Token found? 4. Retrieve token and NO goto step 6 4. a. Verify authentication of Client on basis of IP address b. IdP/TI generates token (opaque−id) 5. Send token Store token 6. IdP/TI creates SAML Assertion with <AuthnStatement> 7. c. SAML Assertion may also contain <AttributeStatement> d. IdP/TI inserts SAML Assertion in SAML <Response> "Inject" SAML <Response> in the Request 8. HTTP Request (POST) http://www.SP.com/registerTravel.jsp + SAML <Response> 9. SP receives, in SAML <Response>, also the token 10. Case 1. SP needs no further info and the U directly accesses the service (step 15) 10. Case 2. SP needs specific profile info from the service, which must be provided by the U, via a "form" 11. HTTP Response (200−OK,"form") 12. U fills in the "form" 13. HTTP Request (POST) 14. SP stores the received info 15. HTTP Response (200−OK,access.jsp) YR-SOC 2007, Leicester, UK 13/28

  14. Analysis approach • We specify the protocol in the process algebra Crypto- CCS, which is CCS plus some cryptographic primitives • We specify the properties to be verified by logic formulae • We add a Dolev-Yao-like intruder to the specification, whose behaviour is implicitly defined by the semantics of the language • We verify a property by monitoring the intruder’s knowledge , which is the set of messages the intruder initially knows plus those received during computation YR-SOC 2007, Leicester, UK 14/28

  15. Crypto-CCS • Set of processes communicating via message passing • Inference system models possible operation on messages r = m 1 · · · m n m 0 S := S 1 � S 2 | A compound systems A := 0 | p.A | [ m 1 · · · m n ⊢ r x ] A ; A 1 sequential agents p := c ! m | c ? x prefix constructs YR-SOC 2007, Leicester, UK 15/28

  16. Informal semantics of Crypto-CCS c ! m send message m over channel c c ? x receive message m over channel c 0 do nothing p.A perform p and then behave as A [ m 1 · · · m n ⊢ r x ] A ; A 1 inference construct S 1 � S 2 parallel composition plus synchronization pk − 1 [ m ⊢ sign x ] A ; 0 Example: y A process that uses rule sign to obtain a digitally signed message from plaintext message m and private key pk − 1 y and then behaves as A , or otherwise does nothing YR-SOC 2007, Leicester, UK 16/28

  17. An example inference system for public-key cryptography x y x KEY Pair ( x, y ) ( pair ) ( enc ) pk − 1 x { x } KEY y ( sign ) { x } pk − 1 Pair ( x, y ) { x } KEY KEY y ( 1st ) ( dec ) x x { x } pk − 1 pk y Pair ( x, y ) y ( ver ) x x ( 2nd ) x ( check ) y YR-SOC 2007, Leicester, UK 17/28

  18. Federated registration c 0 U �→ IdP : r c 1 IdP �→ SP : { r, SAML assertion } K − 1 IdP c 2 SP �→ U : { ok/ko } K − 1 SP 1. user U asks identity provider IdP and service provider SP to federate ⇒ authenticate U ⇒ generate token id U 2. request r intercepted by IdP ⇒ assemble SAML assertion 3. SP grants/denies access to U YR-SOC 2007, Leicester, UK 18/28

  19. SAML assertion A SAML assertion declares “ Subj is authenticated” { Subj , AuthStat , AttrStat } KEY (encrypted SAML assertion ) Subj token id U , univocally identifying U AuthStat authentication statement, asserting U was authenticated (and the mechanism by which) AttrStat attribute list of U plus nonce n IdP to avoid replay attacks U { r, SAML assertion } K − 1 (signed by IdP for authenticity) IdP YR-SOC 2007, Leicester, UK 19/28

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Performance of Host Identity Protocol on Performance of Host Identity Protocol on Lightweight

Performance of Host Identity Protocol on Performance of Host Identity Protocol on Lightweight

Performance of Host Identity Protocol on Performance of Host Identity Protocol on Lightweight Hardware Lightweight Hardware Andrey Khurri, Ekaterina Vorobyeva, Andrei Gurtov Helsinki Institute for Information Technology

346 views • 23 slides
Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao

Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao

Response Identity in Session Initiation Protocol draft-cao-sip-response-identity-00 Feng Cao Cullen Jennings 1 Agenda Introduction Scope Requirements SIP Response Identity Overview Open Issues Summary 2

205 views • 9 slides
ACOnet Identity Federation Policy Experiences Peter Schober ACOnet TERENA EuroCAMP @ 4 th GN3

ACOnet Identity Federation Policy Experiences Peter Schober ACOnet TERENA EuroCAMP @ 4 th GN3

ACOnet Identity Federation Policy Experiences Peter Schober ACOnet TERENA EuroCAMP @ 4 th GN3 Symposium 15-16 October 2012 Agenda 1. The Politics behind Federation Policies 2. Tales from a Federation Operator: On-boarding of prospective

195 views • 16 slides
Kipper a Grid bridge to Identity Federation Andrey Kiryanov Brief The Kipper client

Kipper a Grid bridge to Identity Federation Andrey Kiryanov Brief The Kipper client

Kipper a Grid bridge to Identity Federation Andrey Kiryanov Brief The Kipper client software combines tools and utilities to extend a Web Application to: Enable login via federated SSO like eduGAIN Retrieve a SAML2 Identity Assertion

385 views • 24 slides
Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad

Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad

Backplane &amp; Identity Scenario A widget collaboration protocol for identity sharing Vlad Skvortsov - Echo Johnny Bufu - Janrain Brian McGinnis - Janrain Backplane http://backplanespec.com Example authentication workflow with

204 views • 7 slides
OpenStack Identity Federation Many thanks to: Who are we? Joe Savak Rackspace Product

OpenStack Identity Federation Many thanks to: Who are we? Joe Savak Rackspace Product

OpenStack Identity Federation Many thanks to: Who are we? Joe Savak Rackspace Product Manager ( ) Brad Topol IBM Distinguished Engineer \_( )_/ Jorge Williams Rackspace Principal Architect ~*

380 views • 26 slides
Analysing the Cognitive Effectiveness of the UCM Visual Notation of the UCM Visual Notation

Analysing the Cognitive Effectiveness of the UCM Visual Notation of the UCM Visual Notation

Analysing the Cognitive Effectiveness of the UCM Visual Notation of the UCM Visual Notation Nicolas Genon, Daniel Amyot, Patrick Heymans SAM 2010, damyot@site.uottawa.ca Why Visual Modelling? Why Visual Modelling? Diagrams play a critical role in

1.03k views • 25 slides
Modelling Services as Socio-technical Systems ...and analysing such models Nicola Guarino (*)

Modelling Services as Socio-technical Systems ...and analysing such models Nicola Guarino (*)

Modelling Services as Socio-technical Systems ...and analysing such models Nicola Guarino (*) Nicolas Troquard National Research Council of Italy Institute of Cognitive Sciences and Technology Laboratory for Applied Ontology, Trento (*)

356 views • 20 slides
Concurrency Theory Winter Semester 2019/20 Lecture 7: Modelling and Analysing Mutual Exclusion

Concurrency Theory Winter Semester 2019/20 Lecture 7: Modelling and Analysing Mutual Exclusion

Concurrency Theory Winter Semester 2019/20 Lecture 7: Modelling and Analysing Mutual Exclusion Algorithms &amp; Value-Passing CCS Joost-Pieter Katoen and Thomas Noll Software Modeling and Verification Group RWTH Aachen University

796 views • 58 slides
Application of a Bayesian Approach for Analysing Disease Mapping Data: Modelling Spatially

Application of a Bayesian Approach for Analysing Disease Mapping Data: Modelling Spatially

Application of a Bayesian Approach for Analysing Disease Mapping Data: Modelling Spatially Correlated Small Area Counts Mohammadreza Mohebbi Rory Wolfe Department of Epidemiology and Preventive Medicine, Faculty of Medicine, Nursing and

361 views • 23 slides
Analysing Protocol Implementations Anders Moen Hagalisletto, Lars Strand, Wolfgang Leister and

Analysing Protocol Implementations Anders Moen Hagalisletto, Lars Strand, Wolfgang Leister and

Analysing Protocol Implementations Anders Moen Hagalisletto, Lars Strand, Wolfgang Leister and Arne-Kristian Groven The 5th Information Security Practice and Experience Conference (ISPEC 2009) Xi'an, China April 2009 Outline Motivation VoIP

771 views • 20 slides
to improve Identity Federation Scalability Daniela Phn and Wolfgang Hommel Agenda

to improve Identity Federation Scalability Daniela Phn and Wolfgang Hommel Agenda

Automated User Information Conversion to improve Identity Federation Scalability Daniela Phn and Wolfgang Hommel Agenda Introduction and Motivation Generic Conversion Rule Repository Functionality Workflows Architecture

244 views • 20 slides
CS-522 (Modelling and Simulation) Project Statechart Modelling of TCP protocol Shah Asaduzzaman

CS-522 (Modelling and Simulation) Project Statechart Modelling of TCP protocol Shah Asaduzzaman

CS-522 (Modelling and Simulation) Project Statechart Modelling of TCP protocol Shah Asaduzzaman Zaki Hasnain Patel The total system Client Data Server Application Generator Application Data packet Data Buffer Data Channel (C-to-S) TCP

116 views • 11 slides
Identity Federation for Virtual Organizations: GridShib and MyProxy APAN Middleware Workshop

Identity Federation for Virtual Organizations: GridShib and MyProxy APAN Middleware Workshop

Identity Federation for Virtual Organizations: GridShib and MyProxy APAN Middleware Workshop Jan 22nd, 2006 Toyko, Japan Von Welch vwelch@ncsa.uiuc.edu Outline GridShib MyProxy Future plans: Shibboleth/MyProxy/GridShib

473 views • 28 slides
Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications

Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications

Secure Scuttlebutt: An Identity-Centric Protocol for Subjective and Decentralized Applications Dominic Tarr (SSB, New Zealand) Erick Lavoie (McGill University, Montreal) Aljoscha Meyer (TU Berlin, Germany) Christian Tschudin (U of

501 views • 18 slides
IRP - the Identity Registration Protocol LAWRENCE E. HUGHES CO-FOUNDER AND CTO SIXSCAPE

IRP - the Identity Registration Protocol LAWRENCE E. HUGHES CO-FOUNDER AND CTO SIXSCAPE

IRP - the Identity Registration Protocol LAWRENCE E. HUGHES CO-FOUNDER AND CTO SIXSCAPE COMMUNICATIONS, PTE. LTD. LHUGHES@SIXSCAPE.COM The IPv4 Internet is Broken By the mid- 1990s we realized that public IPv4 addresses would run out

393 views • 12 slides
An Introduction to Combinatorial Species Ira M. Gessel Department of Mathematics Brandeis

An Introduction to Combinatorial Species Ira M. Gessel Department of Mathematics Brandeis

An Introduction to Combinatorial Species Ira M. Gessel Department of Mathematics Brandeis University Brandeis Combinatorics Seminar November 8, 2016 What are combinatorial species? The theory of combinatorial species, introduced by Andr

1.43k views • 75 slides
Computing with Univalence Daniel R. Licata with Robert Harper Carnegie Mellon University 1

Computing with Univalence Daniel R. Licata with Robert Harper Carnegie Mellon University 1

Computing with Univalence Daniel R. Licata with Robert Harper Carnegie Mellon University 1 Identity Types A type M, N : A Id A (M,N) type 2 Identity Types A type M, N : A Id A (M,N) type C : A type F : A B : Id A (M,N) : Id

1.17k views • 90 slides
Enter the Hydra: T oward Principled Bug Bounties and Exploit-Resistant Smart Contracts Summer

Enter the Hydra: T oward Principled Bug Bounties and Exploit-Resistant Smart Contracts Summer

Ari Juels Phil Daian, Florian Tramer Cornell Tech, Jacobs, IC3 Stanford Lorenz Breidenbach Cornell Tech, ETH, IC3 Enter the Hydra: T oward Principled Bug Bounties and Exploit-Resistant Smart Contracts Summer School on Real-World Crypto

1.16k views • 72 slides
Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Ralph Hodgson Realizing a semantic solution: Ontologies are like and unlike other IT models

Enterprise Architecture in SOA: Coverage Models and Methodologies Going Semantic Semantic technology May 23 rd , 2005 Enterprise architecture and semantic technology Enterprise architecture maturity model Capabilities of semantic

244 views • 9 slides
Click To Edit Master Title Style First Quarter 2018 Earnings Conference Call 4/18/2018

Click To Edit Master Title Style First Quarter 2018 Earnings Conference Call 4/18/2018

Click To Edit Master Title Style First Quarter 2018 Earnings Conference Call 4/18/2018 Important Cautionary Statement About Forward-Looking Statements This presentation contains forward-looking statements within the meaning of section 27A of

773 views • 32 slides
Symmetries and integrability conditions for difference equations A.V. Mikhailov University of

Symmetries and integrability conditions for difference equations A.V. Mikhailov University of

Symmetries and integrability conditions for difference equations A.V. Mikhailov University of Leeds, UK Joint work with Jing Ping Wang and P. Xenitidis DART IV, Beijing, 2010 1 Difference equation Q = 0 and Dynamical variables.

703 views • 39 slides
Benchmark Problems Wiener Approaches - Coupled Electric Drives - Wiener Neural Identification [1]

Benchmark Problems Wiener Approaches - Coupled Electric Drives - Wiener Neural Identification [1]

Benchmark Problems Wiener Approaches - Coupled Electric Drives - Wiener Neural Identification [1] - F16 Ground Vibration - Iterative Wiener Identification [2] - Cascaded Tanks System - Wiener-Hammerstein Process Noise System - Bouc-Wen System

457 views • 27 slides
Introduction to ECL INEL4207 Digital Electronics Tuesday, September 27, 11 Current Switch R v

Introduction to ECL INEL4207 Digital Electronics Tuesday, September 27, 11 Current Switch R v

Introduction to ECL INEL4207 Digital Electronics Tuesday, September 27, 11 Current Switch R v C1 v IN Q 1 Q 2 V REF I EE -V EE Tuesday, September 27, 11 ECL Inverter R v C1 Q 3 v IN Q 1 Q 2 V REF v O I E3 I EE -V EE Tuesday, September 27, 11

723 views • 10 slides

More recommend