A flexible distributed authorization protocol
- 23 December 2002
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
Abstract
While there has been considerable effort in creating a single sign-on solution for interoperability among authentication methods, such interoperability across authorization methods has received little attention. This paper presents a flexible distributed authorization protocol that provides the full generality of restricted proxies while supporting the functionality of and interoperability with existing authorization models including OSF DCE and SESAME V2. Our authorization protocol includes a delegation method that is well suited for certain electronic commerce applications.Keywords
This publication has 7 references indexed in Scilit:
- Cascaded authenticationPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Proxy-based authorization and accounting for distributed systemsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2002
- An analysis of the proxy problem in distributed systemsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2002
- Requirements for network payment: the NetCheque perspectivePublished by Institute of Electrical and Electronics Engineers (IEEE) ,2002
- SESAME V2 public key and authorisation extensions to KerberosPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2002
- Kerberos: an authentication service for computer networksIEEE Communications Magazine, 1994
- An architecture for practical delegation in a distributed systemPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1990