2003 Symposium on Applications and the Internet Workshops, 2003. Proceedings. (2003)
Jan. 27, 2003 to Jan. 31, 2003
Sampo Sovio , Nokia Research Center
N. Asokan , Nokia Research Center
Kaisa Nyberg , Nokia Research Center
An authorization domain consists of multiple physical devices. Authorizations, such as the right to make a payment or the right to access some content are granted to the domain as a whole, but can be exercised from any device in the domain. A device in the domain may have either unconditional or restricted access to the authorizations. Typically, authorizations can be modeled as access to a secret key. In this paper, we discuss the rationales for such an authorization domain, and propose a specific technique to implement authorization domains by sharing the RSA function between a device in the domain and a semi-trusted network server.
N. Asokan, S. Sovio and K. Nyberg, "Defining Authorization Domains Using Virtual Devices," 2003 Symposium on Applications and the Internet Workshops, 2003. Proceedings.(SAINT-W), Orlando, Florida, 2003, pp. 331.