Title :
Reasoning about joint administration of access policies for coalition resources
Author :
Khurana, Himanshu ; Gligor, Virgil ; Linn, John
Author_Institution :
Maryland Univ., College Park, MD, USA
Abstract :
We argue that joint administration of access policies for a dynamic coalition formed by autonomous domains requires that these domains set up a coalition authority that distributes attribute certificates authorizing access to policy objects (e.g., ACLs). Control over the issuance of such certificates is retained by member domains separately holding shares of the joint coalition authority´s private key with which they sign the attribute certificates. Hence, any (proper) subset of the member domains need not be trusted to protect the private key. However, application servers that implement joint administration of access policies based on attribute certificates must trust all the signers of those certificates, namely all member domains of the coalition. To capture these trust relations we extend existing access control logics and show that the extensions are sound. To reason about joint administration of access policies, we illustrate an authorization protocol in our logic for accessing policy objects using threshold attribute certificates.
Keywords :
authorisation; client-server systems; formal logic; protocols; public key cryptography; access control logics; access policies; application servers; authorization protocol; autonomous domains; coalition authority; coalition resources; joint administration; policy objects; threshold attribute certificates; Access control; Access protocols; Authorization; Diseases; File servers; Logic; Protection; Public key; Resource management; Web server;
Conference_Titel :
Distributed Computing Systems, 2002. Proceedings. 22nd International Conference on
Print_ISBN :
0-7695-1585-1
DOI :
10.1109/ICDCS.2002.1022281
