Joint actions based authorization schemes

Vijay Varadharajan, Phillip Allen

Research output: Contribution to journalArticle

8 Citations (Scopus)

Abstract

Authorization policy requirements in commercial applications are often richer compared to military applications in terms of the types of privileges required, and more complex in terms of both the nature and degree of interactions between participating objects. Delegation and joint action mechanisms allow a more flexible and dynamic form of access control, thereby enabling the representation of sophisticated authorization policies. This paper explores some issues that need to be addressed when designing such joint actions based authorization policies. We describe some approaches to supporting joint actions based authorization policies, and their ramifications for trust of various components of the implementation. We consider an example from the medical field, and define attributes relevant to the design of joint action schemes and present three schemes for supporting joint action based authorization policies.

Original languageEnglish
Pages (from-to)32-45
Number of pages14
JournalOperating Systems Review (ACM)
Volume30
Issue number3
Publication statusPublished - Jul 1996
Externally publishedYes

Fingerprint Dive into the research topics of 'Joint actions based authorization schemes'. Together they form a unique fingerprint.

Cite this