Title :
Defining authorization domains using virtual devices
Author :
Sovio, Sampo ; Asokan, N. ; Nyberg, Kaisa
Author_Institution :
Nokia Res. Center, Helsinki, Finland
Abstract :
An authorization domain consists of multiple physical devices. Authorizations, such as the right to make a payment or the right to access content are granted to the domain as a whole, but can be exercised from any device in the domain. A device in the domain may have either unconditional or restricted access to the authorizations. Typically, authorizations can be modeled as access to a secret key. In this paper, we discuss the rationales for such an authorization domain, and propose a specific technique to implement authorization domains by sharing the RSA function between a device in the domain and a semi-trusted network server.
Keywords :
Internet; authorisation; cryptography; RSA function; authorization domains; physical devices; restricted access; secret key; semi-trusted network server; unconditional access; Access control; Authorization; Digital signatures; Digital video broadcasting; File servers; Internet; Network servers; Web server;
Conference_Titel :
Applications and the Internet Workshops, 2003. Proceedings. 2003 Symposium on
Print_ISBN :
0-7695-1873-7
DOI :
10.1109/SAINTW.2003.1210181
