Secure protocol of ABAC certificates revocation and delegation

Alexey Rabin, Ehud Gudes

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

1 Scopus citations

Abstract

This paper deals with the maintenance of PKI certificates for Attribute Based Access Control (ABAC). We show, that the current standard has several problems in different revocation and delegation processes. This may lead to a security hole allowing usage of ABAC certificates, when it was revoked or transferred. As a solution we suggest architecture changes, that allow to perform revocation and transfer checks in such cases, based on extensions of the validation process of the ABAC certificates. We also discuss some privacy and performance challenges that are raised as a result of our proposal.

Original languageEnglish
Title of host publicationFoundations and Practice of Security - 10th International Symposium, FPS 2017, Revised Selected Papers
EditorsAbdessamad Imine, Jose M. Fernandez, Luigi Logrippo, Jean-Yves Marion, Joaquin Garcia-Alfaro
PublisherSpringer Verlag
Pages35-50
Number of pages16
ISBN (Print)9783319756493
DOIs
StatePublished - 1 Jan 2018
Externally publishedYes
Event10th International Symposium on Foundations and Practice of Security, FPS 2017 - Nancy, France
Duration: 23 Oct 201725 Oct 2017

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume10723 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

Conference10th International Symposium on Foundations and Practice of Security, FPS 2017
Country/TerritoryFrance
CityNancy
Period23/10/1725/10/17

Fingerprint

Dive into the research topics of 'Secure protocol of ABAC certificates revocation and delegation'. Together they form a unique fingerprint.

Cite this