A Knowledge-Based Approach to Internet Authorizations Using PKI
Download:
unknown authors
http://www.hpl.hp.com/techreports/2000/HPL-2000-133.pdf
Add To MetaCart
Abstract:
policy-driven management, security management, authorization In this paper, a knowledge-based approach to Internet authorizations is proposed by using Public-Key Infrastructure (PKI) based digital certificates, trust models, Role-Based Access Control (RBAC), and inte ligent backtracking. Security policies are expressed as the rules in a knowledge base. An inference engine is utilised to evaluate policies, dynamica ly assign roles to Internet users, and redo roles assignment automatica ly.
Citations
| 112 | Access control meets Public Key Infrastructure, or: assigning roles to strangers – Herzberg, Mass, et al. - 2000 |
| 61 | Role-Based Access Control (RBAC): Features and Motivations – Ferraiolo, Cugini, et al. - 1995 |
| 49 | A Logic-Based Knowledge Representation for Authorization with Delegation – Li, Feigenbaum, et al. - 1999 |
| 41 | Authorization and Attribute Certificates for Widely Distributed Access Control – Johnston, Mudumbai, et al. |
| 30 | A role-based access control model and reference implementation within a corporate intranet – Ferraiolo, Barkley, et al. - 1999 |
| 22 | Internet Credential Acceptance Policies – Seamons, Winsborough, et al. - 1997 |
| 15 | Reasoning about Security: a Logic and a Decision Method for Role-Based Access Control – Massacci - 1997 |
| 8 | A formal model for role based access control with constraints – Giuri, Iglio - 1996 |
