On the deployment of a real scalable delegation service

TitleOn the deployment of a real scalable delegation service
Publication TypeJournal Article
Year of Publication2007
AuthorsJ. Lopez, I. Agudo, and J. A. Montenegro
JournalInformation Security Technical Report
Volume12
Number3
Pagination139-147
Date PublishedJun 2007
PublisherElsevier
ISSN Number1363-4127
Abstract

      This paper explains the evolution of the concept of delegation since its first references in the context of distributed authorization to the actual use as a fundamental part of a privilege management architecture. The work reviews some of the earliest contributions that pointed out the relevance of delegation when dealing with distributed authorization, in particular we comment on PolicyMaker and Keynote, and also on SDSI/SPKI. Then, we elaborate on Federation as a particular case of delegation, and remark the importance given to federation by the industry. Finally, the paper discusses about privilege management infrastructures, introducing a new mechanism to extend their functionality using advanced delegation services.

DOI10.1016/j.istr.2007.05.008
Citation KeyJavierLopez2007
Paper File: 
https://www.nics.uma.es/sites/default/files/papers/JavierLopez2007.pdf

Supported by