Design of a role-based trust-management framework

Citations Over TimeTop 1% of 2005 papers

Abstract

We introduce the RT framework, a family of role-based trust management languages for representing policies and credentials in distributed authorization. RT combines the strengths of role-based access control and trust-management systems and is especially suitable for attribute-based access control. Using a few simple credential forms, RT provides localized authority over roles, delegation in role definition, linked roles, and parameterized roles. RT also introduces manifold roles, which can be used to express threshold and separation-of-duty policies, and delegation of role activations. We formally define the semantics of credentials in the RT framework by presenting a translation from credentials to Datalog rules. This translation also shows that this semantics is algorithmically tractable.

Related Papers

• → Distributed role-based access control for coaliagion application(2005)1 cited
• → A distributed role-based access control model for multi-domain environments(2006)1 cited
• → Trustworthiness-based controllable delegation trust management model in P2P(2010)1 cited
• Controllable delegation trust management model based on trustworthiness in P2P(2009)
• Access Control Based on RBAC and Trust Management(2012)