Commitment issues in delegation process
|
Published Version
(PDF 490kB)
39773.pdf. |
Description
Delegation is a powerful mechanism to provide flexible and dynamic access control decisions. Delegation is particularly useful in federated environments where multiple systems, with their own security autonomy, are connected under one common federation. Although many delegation schemes have been studied, current models do not seriously take into account the issue of delegation commitment of the involved parties. In order to address this issue, this paper introduces a new mechanism to help parties involved in the delegation process to express commitment constraints, perform the commitments and track the committed actions. This mechanism looks at two different aspects: pre-delegation commitment and post-delegation commitment. In pre-delegation commitment, this mechanism enables the involved parties to express the delegation constraints and address those constraints. The post-delegation commitment phase enables those parties to inform the delegator and service providers how the commitments are conducted. This mechanism utilises a modified SAML assertion structure to support the proposed delegation and constraint approach.
Impact and interest:
Citation counts are sourced monthly from Scopus and Web of Science® citation databases.
These databases contain citations from different subsets of available publications and different time periods and thus the citation count from each is usually different. Some works are not in either database and no count is displayed. Scopus includes citations from articles published in 1996 onwards, and Web of Science® generally from 1980 onwards.
Citations counts from the Google Scholar™ indexing service can be viewed at the linked Google Scholar™ search.
Full-text downloads:
Full-text downloads displays the total number of times this work’s files (e.g., a PDF) have been downloaded from QUT ePrints as well as the number of downloads in the previous 365 days. The count includes downloads for all files if a work has more than one.
ID Code: | 39773 | ||
---|---|---|---|
Item Type: | Chapter in Book, Report or Conference volume (Conference contribution) | ||
ORCID iD: |
|
||
Measurements or Duration: | 12 pages | ||
Keywords: | SAML, access control, commitment, delegation | ||
ISBN: | 978-1-920682-62-0 | ||
Pure ID: | 33560558 | ||
Divisions: | Past > QUT Faculties & Divisions > Faculty of Science and Technology Past > Institutes > Information Security Institute Past > QUT Faculties & Divisions > Science & Engineering Faculty Current > Research Centres > Australian Research Centre for Aerospace Automation |
||
Copyright Owner: | Copyright 2008 please consult the authors | ||
Copyright Statement: | This work is covered by copyright. Unless the document is being made available under a Creative Commons Licence, you must assume that re-use is limited to personal use and that permission from the copyright owner must be obtained for all other uses. If the document is available under a Creative Commons License (or other specified license) then refer to the Licence for details of permitted re-use. It is a condition of access that users recognise and abide by the legal requirements associated with these rights. If you believe that this work infringes copyright please provide details by email to qut.copyright@qut.edu.au | ||
Deposited On: | 31 Jan 2011 01:16 | ||
Last Modified: | 09 Mar 2024 17:45 |
Export: EndNote | Dublin Core | BibTeX
Repository Staff Only: item control page