The Community for Technology Leaders
2003 Symposium on Applications and the Internet Workshops, 2003. Proceedings. (2003)
Orlando, Florida
Jan. 27, 2003 to Jan. 31, 2003
ISBN: 0-7695-1873-7
pp: 331
Sampo Sovio , Nokia Research Center
N. Asokan , Nokia Research Center
Kaisa Nyberg , Nokia Research Center
ABSTRACT
An authorization domain consists of multiple physical devices. Authorizations, such as the right to make a payment or the right to access some content are granted to the domain as a whole, but can be exercised from any device in the domain. A device in the domain may have either unconditional or restricted access to the authorizations. Typically, authorizations can be modeled as access to a secret key. In this paper, we discuss the rationales for such an authorization domain, and propose a specific technique to implement authorization domains by sharing the RSA function between a device in the domain and a semi-trusted network server.
INDEX TERMS
null
CITATION

N. Asokan, S. Sovio and K. Nyberg, "Defining Authorization Domains Using Virtual Devices," 2003 Symposium on Applications and the Internet Workshops, 2003. Proceedings.(SAINT-W), Orlando, Florida, 2003, pp. 331.
doi:10.1109/SAINTW.2003.1210181
87 ms
(Ver 3.3 (11022016))