Title :
Complexity of credential processing
Author :
Sacha, Krzysztof
Author_Institution :
Warsaw Univ. of Technol., Warsaw, Poland
Abstract :
Role-based Trust management (RT) languages are an effective means for describing security policies in decentralized and open environments. The statements of a RT language are credentials that describe entities and roles, which the entities can play in the system. A set of credentials can define the security policy and allow deciding on who is authorized to access a resource, and who is not. A credential graph is a graphical representation of the semantics of a given set of credentials. Making a decision on the membership of an entity in a role is equivalent to checking whether an appropriate path exists in the graph. The core part of this paper is a definition of an algorithm for building a credential graph for a set of RTT credentials, and an evaluation of the complexity of the graph building process.
Keywords :
authorisation; graph theory; credential graph; credential processing; decision making; graph building process; graphical representation; role-based trust management language; security policy; Access control; Buildings; Complexity theory; Instruments; Manifolds; Semantics; credential graph; role-based trust management languages; software security; trust management;
Conference_Titel :
EUROCON - International Conference on Computer as a Tool (EUROCON), 2011 IEEE
Conference_Location :
Lisbon
Print_ISBN :
978-1-4244-7486-8
DOI :
10.1109/EUROCON.2011.5929192
