Filling the gap between Requirements Engineering and Public Key/Trust Management Infrastructures
Agentlink Clearinghouse is powered by GNU EPrints developed by the School of Electronics and Computer Science of the University of Southampton.
Type: Conference or Workshop Item (Paper)

Giorgini, P. and Massacci, F. and Mylopoulos, J. and Zannone, N. (2004) Filling the gap between Requirements Engineering and Public Key/Trust Management Infrastructures. In: 1st European PKI Workshop: Research and Applications (1st EuroPKI), 25-26 June 2004, Samos island, Greece.

Full text not available from this archive.


The last years have seen a major interest in designing and deploying trust management and public key infrastructures. Yet, it is still far from clear how one can pass from the organization and system requirements to the actual credentials and attribution of permissions in the PKI infrastructure. Our goal in this paper is filling this gap. We propose a formal framework for modeling and analyzing security and trust requirements, that extends the Tropos methodology for early requirements modeling. The key intuition that underlies our work is the identification of distinct roles for actors that manipulate resources, accomplish goals or execute tasks, and actors that own or permit usage of resources or goals. The paper also presents a simple case study and a PKI/trust management implementation.

Deposited by Nicola Zannone on 23 February 2005

Archive Staff Only: edit this record


AgentLink is the European Commission's IST-funded Coordination Action for Agent-Based Computing
and is coordinated by the
University of Liverpool and University of Southampton
If you encounter any problems with these pages please contact