Title :
Revocation in an Attribute-Based Delegation Model
Author :
Ye, Chunxiao ; Wu, Zhongfu ; Zhong, Jiang ; Feng, Yong
Author_Institution :
Coll. of Comput. Sci., Chongqing Univ., Chongqing
Abstract :
Attribute-based delegation model (ABDM) is a secured and flexible delegation model with an extended delegation constraint. Delegation attribute expressions can be changed in delegation, which induces an automatic revocation in ABDM. In this revocation, delegated permissions can be removed from users automatically according to dominance relation among DAEs of users and delegated permissions. Automatic revocation thus relieves the administrative efforts of delegator or system administrator in revocation. For a better flexibility, ABDM also supports revocation by delegator or system administrator. This paper also discusses some revocation modes of automatic revocation.
Keywords :
authorisation; attribute-based delegation model; automatic revocation; delegation model security; permission delegation; Automatic control; Computer architecture; Computer science; Educational institutions; Permission; Secure storage;
Conference_Titel :
Networking, Architecture, and Storage, 2008. NAS '08. International Conference on
Conference_Location :
Chongqing
Print_ISBN :
978-0-7695-3187-8
DOI :
10.1109/NAS.2008.39