カンファレンス (国際) Access Control Model and Design for Delegation Using Authorization Tokens

Hidehito Gomi

The 3rd IEEE International Conference on Privacy, Security, Risk and Trust (PASSAT2011)


Delegation of authority is an act whereby an entity delegates his or her authority to use personal information to another entity. It has most often been implemented in enterprise environments, but previous studies have focused little on the dynamic data and access management model or the design from a practical viewpoint. An access control model and its design framework is described in which access tokens are used across security domains. The framework enables fine-grained access control with limited overhead for access management and permission assignment for delegated access.