Options
Enforcing usage constraints on credentials for web applications
Publikationstyp
Conference Paper
Publikationsdatum
2015-05
Sprache
English
Author
First published in
Number in series
455
Start Page
112
End Page
125
Citation
IFIP Advances in Information and Communication Technology 455: 112-125 (2015)
Contribution to Conference
Publisher DOI
Scopus ID
Publisher
Springer International Publishing AG
For using credential-based access control effectively, recent work identified the need to enforce usage constraints also on credentials. The enforcement of such constraints has not yet been investigated for web applications, although it is relevant when credential-based access control is employed in a web application. This article proposes an approach suitable for enforcing usage constraints on credentials in web applications. More concretely, we present a novel algorithm and an implementation of this algorithm that construct constraint-compliant proofs for credentialbased access control policies. We proved that our solution is correct and showed that it is also efficient through extensive experiments.
DDC Class
004: Informatik