Change search
ReferencesLink to record
Permanent link

Direct link
Context dependent revocation in delegated XACML
Number of Authors: 2
2008 (English)Report (Other academic)
Abstract [en]

The XACML standard defines an XML based language for defining access control policies and a related processing model. Recent work aims to add delegation to XACML in order to express the right to administrate XACML policies within XACML itself. The delegation profile draft explains how to validate the right to issue a policy, but there are no provisions for removing a policy. This paper proposes a revocation model for delegated XACML. A novel feature of this model is that whether a revocation is valid or not, depends not only on who issued the revocation, but also on the context in which an attempt to use the revoked policy is done.

Place, publisher, year, edition, pages
Kista, Sweden: Swedish Institute of Computer Science , 2008, 1. , 13 p.
SICS Technical Report, ISSN 1100-3154 ; 2008:10
National Category
Computer and Information Science
URN: urn:nbn:se:ri:diva-15126OAI: diva2:1036420
Available from: 2016-10-13 Created: 2016-10-13

Open Access in DiVA

fulltext(199 kB)4 downloads
File information
File name FULLTEXT01.pdfFile size 199 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 4 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

ReferencesLink to record
Permanent link

Direct link