Regulated Delegation in Distributed Systems

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Xuhui Ao Articles by Naftaly H. Minsky

Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06)

London, Ontario, Canada

June 05-June 07

ISBN: 0-7695-2598-9

	ASCII Text	x
	Xuhui Ao, Naftaly H. Minsky, "Regulated Delegation in Distributed Systems," Policies for Distributed Systems and Networks, IEEE International Workshop on, pp. 215-226, Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06), 2006.

	BibTex	x
	@article{ 10.1109/POLICY.2006.27, author = {Xuhui Ao and Naftaly H. Minsky}, title = {Regulated Delegation in Distributed Systems}, journal ={Policies for Distributed Systems and Networks, IEEE International Workshop on}, volume = {0}, year = {2006}, isbn = {0-7695-2598-9}, pages = {215-226}, doi = {http://doi.ieeecomputersociety.org/10.1109/POLICY.2006.27}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Policies for Distributed Systems and Networks, IEEE International Workshop on TI - Regulated Delegation in Distributed Systems SN - 0-7695-2598-9 SP215 EP226 A1 - Xuhui Ao, A1 - Naftaly H. Minsky, PY - 2006 KW - null VL - 0 JA - Policies for Distributed Systems and Networks, IEEE International Workshop on ER -

Xuhui Ao, Ask Jeeves, USA

Naftaly H. Minsky, Rutgers University, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/POLICY.2006.27

Certificate-based delegation (CBD) is a prominent element of distributed access control, providing it with flexibility and scalability. But despite its elegance and effectiveness, CBD has inherent limitations that restrict its applicability. These limitations include, among others: lack of support for non-monotonic policies, such as separation of duties; the inability to support the transfer of privileges, where the delegator loses the privilege it delegates; and the lack of support for quotas, i.e., restrictions on the number of time a given privilege can be exercised.

This paper describes an approach to the distributed delegation, which shares much of the flexibility and scalability of CBD, but is not encumbered by its limitations. This approach is based on the decentralized control mechanism called law-governed interaction (LGI), which is used to regulate the process of delegation itself.

Citation:

Xuhui Ao, Naftaly H. Minsky, "Regulated Delegation in Distributed Systems," policy, pp.215-226, Seventh IEEE International Workshop on Policies for Distributed Systems and Networks (POLICY'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.