• DocumentCode
    3152122
  • Title

    Dynamic Identity Delegation Using Access Tokens in Federated Environments

  • Author

    Gomi, Hidehito

  • Author_Institution
    Yahoo! JAPAN Res., Yahoo! Japan Corp., Tokyo, Japan
  • fYear
    2011
  • fDate
    4-9 July 2011
  • Firstpage
    612
  • Lastpage
    619
  • Abstract
    Identity delegation is an act whereby an entity delegates his or her authority to use identity information to another entity. It has most often been implemented in enterprise environments, but previous studies have focused little on the dynamic data and access management model as well as the design from a practical viewpoint. An identity delegation framework is described for using access tokens across security domains. The framework enables fine-grained access control with limited overhead cost for access management and permission assignment for delegated access.
  • Keywords
    authorisation; access management; access token; enterprise environment; fine-grained access control; identity delegation framework; permission assignment; security domain; Authentication; Authorization; Context; Mediation; Pensions; access tokens; delegation; identity federation;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Web Services (ICWS), 2011 IEEE International Conference on
  • Conference_Location
    Washington, DC
  • Print_ISBN
    978-1-4577-0842-8
  • Electronic_ISBN
    978-0-7695-4463-2
  • Type

    conf

  • DOI
    10.1109/ICWS.2011.30
  • Filename
    6009444
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3152122