Title :
Access Control Model and Design for Delegation Using Authorization Tokens
Author_Institution :
Yahoo! JAPAN Res., Tokyo, Japan
Abstract :
Delegation of authority is an act whereby an entity delegates his or her authority to use personal information to another entity. It has most often been implemented in enterprise environments, but previous studies have focused little on the dynamic data and access management model or the design from a practical viewpoint. An access control model and its design framework is described in which access tokens are used across security domains. The framework enables fine-grained access control with limited overhead for access management and permission assignment for delegated access.
Keywords :
authorisation; database management systems; personal information systems; access control model; authorization tokens; delegation design; dynamic access management model; dynamic data management model; enterprise environments; fine-grained access control; personal information; Authentication; Authorization; Companies; Integrated circuits; Pensions; access tokens; delegation;
Conference_Titel :
Privacy, Security, Risk and Trust (PASSAT) and 2011 IEEE Third Inernational Conference on Social Computing (SocialCom), 2011 IEEE Third International Conference on
Conference_Location :
Boston, MA
Print_ISBN :
978-1-4577-1931-8
DOI :
10.1109/PASSAT/SocialCom.2011.124
