Distributed Credential Chain Discovery in Trust Management with Parameterized Roles and Constraints (Short Paper)

Get BibTex-formatted data

Author

Ziqing Mao, Ninghui Li, William H. Winsboro

Entry type

article

Abstract

Trust management (TM) is an approach to access control in decentralized distributed systems with access control decisions based on statements made by multiple principals. Li et al. developed the RT family of Role-Based Trust-management languages, which combine the strengths of Role-Based Access Control and TM systems. We present a distributed credential chain discovery algorithm for RT1C, a language in the RT family that has parameterized roles and constraints. Our algorithm is a combination of the logic-programming style top-down query evaluation with tabling and a goal-directed version of the deductive database style bottom-up evaluation. Our algorithm uses hints provided through the storage types to determine whether to use a top-down or bottom-up strategy for a particular part of the proof; this enables the algorithm to touch only those credentials that are related to the query, which are likely to be a small fraction of all the credentials in the system.

Date

2006 – 1 – 1

URL

http://www.springerlink.com/content/97108m42313v51p7/

Booktitle

Information and Communications Security

Key alpha

Pages

159-173

Publisher

Springer Berlin / Heidelberg

Series

Lecture Notes in Computer Science

Volume

4307

Publication Date

2006-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.

@Article{ Li,
	title = "Distributed Credential Chain Discovery in Trust Management with Parameterized Roles and Constraints (Short Paper)",
	author = "Ziqing Mao, Ninghui Li, William H. Winsboro",
	year = "2006",
	month = "1",
	booktitle = "Information and Communications Security",
	pages = "159-173",
	publisher = "Springer Berlin / Heidelberg",
	series = "Lecture Notes in Computer Science",
	volume = "4307",
	day = "1",
	abstract = "Trust management (TM) is an approach to access control in decentralized distributed systems with access control decisions based on statements made by multiple principals. Li et al. developed the RT family of Role-Based Trust-management languages, which combine the strengths of Role-Based Access Control and TM systems. We present a distributed credential chain discovery algorithm for RT1C, a language in the RT family that has parameterized roles and constraints. Our algorithm is a combination of the logic-programming style top-down query evaluation with tabling and a goal-directed version of the deductive database style bottom-up evaluation. Our algorithm uses hints provided through the storage types to determine whether to use a top-down or bottom-up strategy for a particular part of the proof; this enables the algorithm to touch only those credentials that are related to the query, which are likely to be a small fraction of all the credentials in the system.",
	url = "http://www.springerlink.com/content/97108m42313v51p7/",
}