Title :
An architecture for practical delegation in a distributed system
Author :
Gasser, Morrie ; McDermott, Ellen
Author_Institution :
Digital Equipment Corp., Boxborough, MA, USA
Abstract :
A practical technique for delegation is described. It provides both cryptographic assurance that a delegation was authorized and authentication of the delegated systems, thereby allowing reliable access control as well as precise auditing of the systems involved in every access. It goes further than other approaches for delegation in that it also provides termination of a delegation on demand (as when the user logs out) with the assurance that the delegated systems, if subsequently compromised, cannot continue to act on the user´s behalf. Delegation and revocation are provided by a simple mechanism that does not rely on online trusted servers
Keywords :
auditing; cryptography; distributed processing; supervisory programs; auditing; authentication; authorization; cryptographic assurance; delegation; distributed system; logging out; reliable access control; revocation; security; termination; Access control; Authentication; Authorization; Computerized monitoring; Control systems; Identity-based encryption; Remote monitoring; Security; Trademarks; Voice mail;
Conference_Titel :
Research in Security and Privacy, 1990. Proceedings., 1990 IEEE Computer Society Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-2060-9
DOI :
10.1109/RISP.1990.63835
