Skip to main content

Privacy Preserving Trust Authorization Framework Using XACML

Mbanaso, Uche and Cooper, G.S. and Chadwick, David W. and Proctor, S. (2006) Privacy Preserving Trust Authorization Framework Using XACML. In: 2006 International Symposium on a World of Wireless, Mobile and Multimedia Networks(WoWMoM'06). IEEE, pp. 673-678. ISBN 0-7695-2593-8. (doi:10.1109/WOWMOM.2006.92) (KAR id:14477)

PDF
Language: English
Download (227kB) Preview
[img]
Preview
Official URL
http://dx.doi.org/10.1109/WOWMOM.2006.92

Abstract

Nowadays many organisations share sensitive services through open network systems and this raises the need for an authorization framework that can interoperate even when the parties have no pre-existing relationships. Trust Negotiation is the process used to establish these first relationships, through the transfer of attributes, embedded in digital credentials, between the two parties. However, these attributes may themselves be considered sensitive and so may need protection from disclosure. In some environments, the policies that govern the protected services may also be considered sensitive and their release to arbitrary strangers may leak confidential business information. Thus, the electronic services, the policies that control access to them, and the digital credentials used to gain access may all be sensitive and require access protections. This paper describes how to unify the protection of services, sensitive credentials and policies in a synchronised trustworthy manner. We propose a trust authorization framework (TAF) that builds on the capabilities of XACML to support the bilateral exchange of policies and credentials through trust negotiation. Our framework addresses privacy and trust issues, and considers services, credentials, and authorization policies protected resources whose access is subject to credential proof and trust level validation

Item Type: Book section
DOI/Identification number: 10.1109/WOWMOM.2006.92
Additional information: Presented in Workshop on Trust, Security and Privacy for Ubiquitous Computing (TSPUC'06)
Subjects: Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming,
Divisions: Faculties > Sciences > School of Computing > Security Group
Depositing User: Mark Wheadon
Date Deposited: 24 Nov 2008 18:04 UTC
Last Modified: 23 Jan 2020 04:02 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/14477 (The current URI for this page, for reference purposes)
Chadwick, David W.: https://orcid.org/0000-0003-3145-055X
  • Depositors only (login required):

Downloads

Downloads per month over past year