Mbanaso, UM, Cooper, GS, Chadwick, DW and Proctor, S 2006, Privacy preserving trust authorization framework using XACML , in: WOWMOM 2006: Seventh IEEE International Symposium on a World of Wireless, Mobile and Multimedia Networks, 26-29 June 2006, Niagara Falls, New York, USA.
PDF (Publisher version)
Download (244kB) | Preview
Nowadays many organizations share sensitive services through open network systems and this raises the need for an authorization framework that can interoperate even when the parties have no pre-existing relationships. Trust Negotiation is the process used to establish these first relationships, through the transfer of attributes, embedded in digital credentials, between the two parties. However, these attributes may themselves be considered sensitive and so may need protection from disclosure. In some environments, the policies that govern the protected services may also be considered sensitive and their release to arbitrary strangers may leak confidential business information. This paper describes a way to unify the protection of services, sensitive credentials and policies in a synchronized trustworthy manner. We propose a trust authorization framework (TAF) that builds on the capabilities of XACML to support the bilateral exchange of policies and credentials through trust negotiation.
|Item Type:||Conference or Workshop Item (Paper)|
|Additional Information:||Published by IEEE (Institute of Electrical and Electronics Engineers) Computer Society|
|Themes:||Subjects / Themes > Q Science > QA Mathematics > QA075 Electronic computers. Computer science
Subjects outside of the University Themes
|Schools:||Schools > School of Computing, Science and Engineering
Schools > School of Computing, Science and Engineering > Salford Innovation Research Centre (SIRC)
|Publisher:||IEEE Computer Society|
|Depositing User:||GS Cooper|
|Date Deposited:||28 Apr 2009 09:11|
|Last Modified:||01 Dec 2015 00:00|
Actions (login required)
|Edit record (repository staff only)|