Title :
On key assignment for hierarchical access control
Author :
Crampton, Jason ; Martin, Keith ; Wild, Peter
Author_Institution :
R. Holloway, London Univ.
Abstract :
A key assignment scheme is a cryptographic technique for implementing an information flow policy, sometimes known as hierarchical access control. All the research to date on key assignment schemes has focused on particular encryption techniques rather than an analysis of what features are required of such a scheme. To remedy this we propose a family of generic key assignment schemes and compare their respective advantages. We note that every scheme in the literature is simply an instance of one of our generic schemes. We then conduct an analysis of the Aki-Taylor scheme and propose a number of improvements. We also demonstrate that many of the criticisms that have been made of this scheme in respect of key updates are unfounded, finally, exploiting the deeper understanding we have acquired of key assignment schemes, we introduce a technique for exploiting the respective advantages of different schemes
Keywords :
authorisation; cryptography; Aki-Taylor scheme; cryptographic technique; encryption techniques; hierarchical access control; information flow policy; key assignment; Access control; Computer security; Conferences; Cryptography; Data security; Databases; Information security; Postal services; TV broadcasting;
Conference_Titel :
Computer Security Foundations Workshop, 2006. 19th IEEE
Conference_Location :
Venice
Print_ISBN :
0-7695-2615-2
DOI :
10.1109/CSFW.2006.20