Secure protocol of ABAC certificates revocation and delegation

Alexey Rabin; Ehud Gudes

doi:10.1007/978-3-319-75650-9_3

Secure protocol of ABAC certificates revocation and delegation

Alexey Rabin, Ehud Gudes

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Scopus citations

Abstract

This paper deals with the maintenance of PKI certificates for Attribute Based Access Control (ABAC). We show, that the current standard has several problems in different revocation and delegation processes. This may lead to a security hole allowing usage of ABAC certificates, when it was revoked or transferred. As a solution we suggest architecture changes, that allow to perform revocation and transfer checks in such cases, based on extensions of the validation process of the ABAC certificates. We also discuss some privacy and performance challenges that are raised as a result of our proposal.

Original language	English
Title of host publication	Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers
Editors	Abdessamad Imine, Jose M. Fernandez, Luigi Logrippo, Jean-Yves Marion, Joaquin Garcia-Alfaro
Publisher	Springer Verlag
Pages	35-50
Number of pages	16
ISBN (Print)	9783319756493
DOIs	https://doi.org/10.1007/978-3-319-75650-9_3
State	Published - 1 Jan 2018
Externally published	Yes
Event	10th International Symposium on Foundations and Practice of Security, FPS 2017 - Nancy, France Duration: 23 Oct 2017 → 25 Oct 2017

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	10723 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	10th International Symposium on Foundations and Practice of Security, FPS 2017
Country/Territory	France
City	Nancy
Period	23/10/17 → 25/10/17

ASJC Scopus subject areas

Theoretical Computer Science
Computer Science (all)

Access to Document

10.1007/978-3-319-75650-9_3

Cite this

Rabin, A., & Gudes, E. (2018). Secure protocol of ABAC certificates revocation and delegation. In A. Imine, J. M. Fernandez, L. Logrippo, J-Y. Marion, & J. Garcia-Alfaro (Eds.), Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers (pp. 35-50). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10723 LNCS). Springer Verlag. https://doi.org/10.1007/978-3-319-75650-9_3

Rabin, Alexey ; Gudes, Ehud. / Secure protocol of ABAC certificates revocation and delegation. Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers. editor / Abdessamad Imine ; Jose M. Fernandez ; Luigi Logrippo ; Jean-Yves Marion ; Joaquin Garcia-Alfaro. Springer Verlag, 2018. pp. 35-50 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{8e8d0a5deac942b9b63d369c2bb07ce5,

title = "Secure protocol of ABAC certificates revocation and delegation",

abstract = "This paper deals with the maintenance of PKI certificates for Attribute Based Access Control (ABAC). We show, that the current standard has several problems in different revocation and delegation processes. This may lead to a security hole allowing usage of ABAC certificates, when it was revoked or transferred. As a solution we suggest architecture changes, that allow to perform revocation and transfer checks in such cases, based on extensions of the validation process of the ABAC certificates. We also discuss some privacy and performance challenges that are raised as a result of our proposal.",

author = "Alexey Rabin and Ehud Gudes",

note = "Publisher Copyright: {\textcopyright} Springer International Publishing AG, part of Springer Nature 2018.; 10th International Symposium on Foundations and Practice of Security, FPS 2017 ; Conference date: 23-10-2017 Through 25-10-2017",

year = "2018",

month = jan,

day = "1",

doi = "10.1007/978-3-319-75650-9_3",

language = "English",

isbn = "9783319756493",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "35--50",

editor = "Abdessamad Imine and Fernandez, {Jose M.} and Luigi Logrippo and Jean-Yves Marion and Joaquin Garcia-Alfaro",

booktitle = "Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers",

address = "Germany",

}

Rabin, A & Gudes, E 2018, Secure protocol of ABAC certificates revocation and delegation. in A Imine, JM Fernandez, L Logrippo, J-Y Marion & J Garcia-Alfaro (eds), Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 10723 LNCS, Springer Verlag, pp. 35-50, 10th International Symposium on Foundations and Practice of Security, FPS 2017, Nancy, France, 23/10/17. https://doi.org/10.1007/978-3-319-75650-9_3

Secure protocol of ABAC certificates revocation and delegation. / Rabin, Alexey; Gudes, Ehud.
Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers. ed. / Abdessamad Imine; Jose M. Fernandez; Luigi Logrippo; Jean-Yves Marion; Joaquin Garcia-Alfaro. Springer Verlag, 2018. p. 35-50 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 10723 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Secure protocol of ABAC certificates revocation and delegation

AU - Rabin, Alexey

AU - Gudes, Ehud

N1 - Publisher Copyright: © Springer International Publishing AG, part of Springer Nature 2018.

PY - 2018/1/1

Y1 - 2018/1/1

N2 - This paper deals with the maintenance of PKI certificates for Attribute Based Access Control (ABAC). We show, that the current standard has several problems in different revocation and delegation processes. This may lead to a security hole allowing usage of ABAC certificates, when it was revoked or transferred. As a solution we suggest architecture changes, that allow to perform revocation and transfer checks in such cases, based on extensions of the validation process of the ABAC certificates. We also discuss some privacy and performance challenges that are raised as a result of our proposal.

AB - This paper deals with the maintenance of PKI certificates for Attribute Based Access Control (ABAC). We show, that the current standard has several problems in different revocation and delegation processes. This may lead to a security hole allowing usage of ABAC certificates, when it was revoked or transferred. As a solution we suggest architecture changes, that allow to perform revocation and transfer checks in such cases, based on extensions of the validation process of the ABAC certificates. We also discuss some privacy and performance challenges that are raised as a result of our proposal.

UR - http://www.scopus.com/inward/record.url?scp=85042531974&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-75650-9_3

DO - 10.1007/978-3-319-75650-9_3

M3 - Conference contribution

AN - SCOPUS:85042531974

SN - 9783319756493

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 35

EP - 50

BT - Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers

A2 - Imine, Abdessamad

A2 - Fernandez, Jose M.

A2 - Logrippo, Luigi

A2 - Marion, Jean-Yves

A2 - Garcia-Alfaro, Joaquin

PB - Springer Verlag

T2 - 10th International Symposium on Foundations and Practice of Security, FPS 2017

Y2 - 23 October 2017 through 25 October 2017

ER -

Rabin A, Gudes E. Secure protocol of ABAC certificates revocation and delegation. In Imine A, Fernandez JM, Logrippo L, Marion J-Y, Garcia-Alfaro J, editors, Foundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers. Springer Verlag. 2018. p. 35-50. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-75650-9_3

Secure protocol of ABAC certificates revocation and delegation

Abstract

Publication series

Conference

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this