Affiliation:
1. Department of Information Engineering, University of Parma, Parma, Italy
Abstract
In the context of Web services, access control presents some interesting challenges, especially when services are exposed to a global audience, with users accessing them from different systems and under different security settings. A decentralized approach to access control, which can be applied to such open environments, is represented by Trust Management. In fact, it is based on the peer-to-peer delegation of access rights among users, also across organizational boundaries, without supposing a-priori the existence of trusted third parties in the system. This article presents dDelega, a Trust Management framework for SOAP-style and REST-style Web services, available as open source software and usable in different application scenarios. The framework allows users to create multiple levels of delegation of access rights for protected resources. It defines various certificates, for binding names, permissions and oblivious attributes to users, adhering to relevant standards, such as WS-Security, SAML and XACML.
Reference40 articles.
1. Enabling interoperation between Shibboleth and Information Card systems
2. Anderson, A., & Lockhart, H. (2004). SAML 2.0 profile of XACML. Retrieved 2013-08-20 from http://docs.oasis-open.org/xacml/access_control-xacml-2.0-saml_profile-spec-cd-02.pdf
3. Balfanz, D., Durfee, G., Shankar, N., Smetters, D., Staddon, J., & Wong, H. C. (2003). Secret handshakes from pairing-based key agreements. In Proceedings of the IEEE Symposium on Security and Privacy (pp. 180-196).
4. Belenkiy, M., Camenisch, J., Chase, M., Kohlweiss, M., Lysyanskaya, A., & Shacham, H. (2009). Randomizable proofs and delegatable anonymous credentials. In Proceedings of the Advances in Cryptology - CRYPTO 2009, ser. Lecture Notes in Computer Science (vol. 5677, pp. 108-125). Springer Berlin / Heidelberg.
Cited by
20 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Supporting Participation in Online Social Networks;Research Anthology on Usage, Identity, and Impact of Social Media on Society and Culture;2022-06-10
2. Participation in Online Social Networks;Research Anthology on Usage, Identity, and Impact of Social Media on Society and Culture;2022-06-10
3. Factors Impacting Behavioral Intention of Users to Adopt IoT In India;International Journal of Information Security and Privacy;2020-10
4. Social Media for Online Collaboration in Firms and Organizations;Information Diffusion Management and Knowledge Sharing;2020
5. A P2P Architecture for Social Networking;Applying Integration Techniques and Methods in Distributed Systems and Technologies;2019