Change search
ReferencesLink to record
Permanent link

Direct link
Context dependent revocation in delegated XACML
Number of Authors: 2
2008 (English)Report (Other academic)
Abstract [en]

The XACML standard defines an XML based language for defining access control policies and a related processing model. Recent work aims to add delegation to XACML in order to express the right to administrate XACML policies within XACML itself. The delegation profile draft explains how to validate the right to issue a policy, but there are no provisions for removing a policy. This paper proposes a revocation model for delegated XACML. A novel feature of this model is that whether a revocation is valid or not, depends not only on who issued the revocation, but also on the context in which an attempt to use the revoked policy is done.

Place, publisher, year, edition, pages
Kista, Sweden: Swedish Institute of Computer Science , 2008, 1. , 13 p.
Series
SICS Technical Report, ISSN 1100-3154 ; 2008:10
National Category
Computer and Information Science
Identifiers
URN: urn:nbn:se:ri:diva-22938OAI: oai:DiVA.org:ri-22938DiVA: diva2:1042503
Available from: 2016-10-31 Created: 2016-10-31

Open Access in DiVA

fulltext(199 kB)1 downloads
File information
File name FULLTEXT01.pdfFile size 199 kBChecksum SHA-512
2a1d77c4d6f6a43772d6824b2e781acf9006ef0981bdee94c6d60e6c6adb068077029567bd1e006b54418eff9749fe69fa72a32cc8f1caa45ff5bbd7a4726aed
Type fulltextMimetype application/pdf

Computer and Information Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 1 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 3 hits
ReferencesLink to record
Permanent link

Direct link