Back
  1. Home
  3. Detailled Reference
Download
Paper published in a book (Scientific congresses, symposiums and conference proceedings)
Postulates for Revocation Schemes
Cramer, Marcos; Casini, Giovanni
2017In Cramer, Marcos; Casini, Giovanni (Eds.) Principles of Security and Trust. Proceedings of the 6th International Conference POST 2017
Peer reviewed
Permalink
https://hdl.handle.net/10993/29413
DOI
10.1007/978-3-662-54455-6_11
 

Files (1)Send toDetailsStatisticsBibliographySimilar publications

Files

Full Text
AEL_revocation_tech_rep.pdf
Author postprint (306.23 kB)
Download

The original paper has been published by Springer (https://link.springer.com/chapter/10.1007/978-3-662-54455-6_11). The content of the present version corresponds to the published version, plus the proofs of the propositions.

All documents in ORBilu are protected by a user license.

Send to


Details


Keywords :
access control; delegation; permission
Abstract :
[en] In access control frameworks with the possibility of delegating permissions and administrative rights, delegation chains can form. There are di erent ways to treat these delegation chains when revoking rights, which give rise to di erent revocation schemes. Hagstr om et al. [11] proposed a framework for classifying revocation schemes, in which the di erent revocation schemes are de ned graph-theoretically. At the outset, we identify multiple problems with Hagstr om et al.'s de nitions of the revocation schemes, which can pose security risks. This paper is centered around the question how one can systematically ensure that improved de nitions of the revocation schemes do not lead to similar problems. For this we propose to apply the axiomatic method originating in social choice theory to revocation schemes. Our use of the axiomatic method resembles its use in belief revision theory. This means that we de ne postulates that describe the desirable behaviour of revocation schemes, study which existing revocation frameworks satisfy which postulates, and show how all de ned postulates can be satis ed by de ning the revocation schemes in a novel way.
Disciplines :
Computer science
Author, co-author :
Cramer, Marcos ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Casini, Giovanni ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
External co-authors :
no
Language :
English
Title :
Postulates for Revocation Schemes
Publication date :
18 January 2017
Event name :
6th International Conference on Principles of Security and Trust (POST)
Event place :
Uppsala, Sweden
Event date :
22-29 April 2017
Audience :
International
Main work title :
Principles of Security and Trust. Proceedings of the 6th International Conference POST 2017
Author, co-author :
Cramer, Marcos 
Casini, Giovanni 
Publisher :
Springer
ISBN/EAN :
978-3-662-54454-9
Collection name :
LNCS, volume 10204
Pages :
232-252
Peer reviewed :
Peer reviewed
Focus Area :
Computational Sciences
Additional URL :
https://link.springer.com/chapter/10.1007/978-3-662-54455-6_11
FnR Project :
FNR4758104 - Specification Logics And Inference Tools For Verification And Enforcement Of Policies, 2011 (01/06/2012-30/04/2017) - Leon Van Der Torre
Available on ORBilu :
since 18 January 2017

Statistics

Number of views
148 (38 by Unilu)
Number of downloads
110 (8 by Unilu)
More statistics
Scopus citations®
 
2
Scopus citations®
without self-citations
1
OpenCitations
 
1
WoS citations
 
0

Bibliography

Similar publications


Contact ORBilu