A rule-based framework for role-based constrained delegation

Authors:
Gang Yin;Huai-min Wang;Dian-xi Shi;Yan Jia;Meng Teng
Affiliations:
National University of Defense Technology, China;National University of Defense Technology, China;National University of Defense Technology, China;National University of Defense Technology, China;National University of Defense Technology, China
Venue:
InfoSecu '04 Proceedings of the 3rd international conference on Information security
Year:
2004

Citing 12
Cited 1

A rule-based language with functions and sets

ACM Transactions on Database Systems (TODS)
Authentication in distributed systems: theory and practice

ACM Transactions on Computer Systems (TOCS)
Role-Based Access Control Models

Computer
A model of OASIS role-based access control and its support for active security

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Delegation logic: A logic-based approach to distributed authorization

ACM Transactions on Information and System Security (TISSEC)
Using Authority Certificates to Create Management Structures

Revised Papers from the 9th International Workshop on Security Protocols
Framework for role-based delegation models

ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Constrained Delegation

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
Design of a Role-Based Trust-Management Framework

SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
dRBAC: Distributed Role-based Access Control for Dynamic Coalition Environments

ICDCS '02 Proceedings of the 22 nd International Conference on Distributed Computing Systems (ICDCS'02)
Grid Computing: Making the Global Infrastructure a Reality

Grid Computing: Making the Global Infrastructure a Reality
Role-based cascaded delegation

Proceedings of the ninth ACM symposium on Access control models and technologies

Case study: Improving debt collection processes using rule-based decision engines: A case study of Capital One

International Journal of Information Management: The Journal for Information Professionals

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we concentrate on the delegation problem in trust management (TM) systems. One key point for delegation models is to find the balance between flexibility and controllability. Delegation models in existing TM systems usually have no effective control over delegated privileges or try to enforce too strict constraint on delegation that raises difficulty in policy definition and computational-model constructing. We propose a role-based constrained delegation Model called RCDM04, which is a constrained extension of current role-based trust management systems. RCDM04 comprises a novel delegation framework for multi-centric authorization and proxy-based authentication, proposing to use trusted scope and delegation depth to control the propagation of delegated privileges. This paper also introduces a rule-based language for specifying and enforcing the policies in the model.