一种基于能力认证的灵活访问控制框架

2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops) Pub Date : 2005-01-31 DOI:10.1109/SAINTW.2005.7

Fabio Dianda, Filippo Giuntini, F. Martinelli, A. Vaccarelli

{"title":"一种基于能力认证的灵活访问控制框架","authors":"Fabio Dianda, Filippo Giuntini, F. Martinelli, A. Vaccarelli","doi":"10.1109/SAINTW.2005.7","DOIUrl":null,"url":null,"abstract":"We investigate the notion of authentication procedure. We show how this can be split in several phases: establishing that an ability can be performed, deducing a certain information from such an ability, witnessing the authenticity of the information deduced from the ability. In our framework, ability means that one is able to perform role in a protocol. We argue that the concept of ability authentication is more general that the one of identity authentication, that is commonly used in AAA systems. The flexibility provided by our framework of authentication seems also suitable for ubiquitous computing scenarios.","PeriodicalId":220913,"journal":{"name":"2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops)","volume":"118 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2005-01-31","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A Flexible Framework for Access Control Based on Ability Authentication\",\"authors\":\"Fabio Dianda, Filippo Giuntini, F. Martinelli, A. Vaccarelli\",\"doi\":\"10.1109/SAINTW.2005.7\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"We investigate the notion of authentication procedure. We show how this can be split in several phases: establishing that an ability can be performed, deducing a certain information from such an ability, witnessing the authenticity of the information deduced from the ability. In our framework, ability means that one is able to perform role in a protocol. We argue that the concept of ability authentication is more general that the one of identity authentication, that is commonly used in AAA systems. The flexibility provided by our framework of authentication seems also suitable for ubiquitous computing scenarios.\",\"PeriodicalId\":220913,\"journal\":{\"name\":\"2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops)\",\"volume\":\"118 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2005-01-31\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SAINTW.2005.7\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SAINTW.2005.7","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

我们研究了认证过程的概念。我们将展示如何将其分为几个阶段:确定可以执行的能力，从这种能力中推断出某些信息，见证从能力中推断出的信息的真实性。在我们的框架中，能力意味着一个人能够在协议中执行角色。我们认为能力认证的概念比AAA系统中常用的身份认证的概念更为通用。我们的身份验证框架提供的灵活性似乎也适用于无处不在的计算场景。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Flexible Framework for Access Control Based on Ability Authentication

We investigate the notion of authentication procedure. We show how this can be split in several phases: establishing that an ability can be performed, deducing a certain information from such an ability, witnessing the authenticity of the information deduced from the ability. In our framework, ability means that one is able to perform role in a protocol. We argue that the concept of ability authentication is more general that the one of identity authentication, that is commonly used in AAA systems. The flexibility provided by our framework of authentication seems also suitable for ubiquitous computing scenarios.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2005 Symposium on Applications and the Internet Workshops (SAINT 2005 Workshops)

自引率

0.00%

发文量