Title :
Revocation schemes for delegated authorities
Author :
Firozabadi, Babak Sadighi ; Sergot, Marek
Author_Institution :
Swedish Inst. of Comput. Sci., Kista, Sweden
Abstract :
We deal with an existing framework for updating privileges and creating management structures by means of authority certificates. These are used both to create access-level permissions and to delegate authority to other agents. Here we extend the framework to support a richer set of revocation schemes. The discussion of revocation follows an existing classification in the literature based on three separate dimensions: resilience, propagation, and dominance. The first one does not apply to this framework. The second one is specified straightforwardly. The third one can be encoded but raises a number of further questions for future investigation.
Keywords :
computer network management; public key cryptography; access-level permissions; authority certificates; dominance; management structures; propagation; public key certificate; revocation; Calculus; Computer science; Conferences; Environmental management; Logic; Permission; Public key; Resilience; Silicon carbide; Technology management;
Conference_Titel :
Policies for Distributed Systems and Networks, 2002. Proceedings. Third International Workshop on
Print_ISBN :
0-7695-1611-4
DOI :
10.1109/POLICY.2002.1011310
