Role-Based Access Control Models
Computer
Proposed NIST standard for role-based access control
ACM Transactions on Information and System Security (TISSEC)
Role-Based Access Control With X.509 Attribute Certificates
IEEE Internet Computing
Design of a Role-Based Trust-Management Framework
SP '02 Proceedings of the 2002 IEEE Symposium on Security and Privacy
dRBAC: Distributed Role-based Access Control for Dynamic Coalition Environments
ICDCS '02 Proceedings of the 22 nd International Conference on Distributed Computing Systems (ICDCS'02)
IEEE Security and Privacy
Hi-index | 0.00 |
Despite recent advances in trust relationship control mechanisms, issues remain that impede the development of effective trust models. One of these is the lack of dynamic mechanisms that can simultaneously achieve both privacy and efficiency when establishing a new trust relationship. Current techniques encourage the client to reveal more attributes than may be required by the web service (resulting in a lack of privacy) or else engage in negotiation with the web service to discover and then serially provide the claims required (resulting in a lack of efficiency). We propose a method whereby the client discovers the web service's requirements from the service's policy document, then formulates a single trust primitive by associating a set of client attributes with an identifier, all signed with the token holder's digital signature. This technique allows the client to form trust relationships dynamically and efficiently. Client privacy is preserved because only those attributes required to access the web service are revealed.