International Symposium on Applications and the Internet Workshops (SAINTW'06) (2003)
Jan. 27, 2003 to Jan. 31, 2003
N. Asokan , Nokia Research Center
Sampo Sovio , Nokia Research Center
Kaisa Nyberg , Nokia Research Center
An authorization domain consists of multiple physical devices. Authorizations, such as the right to make a payment or the right to access some content are granted to the domain as a whole, but can be exercised from any device in the domain. A device in the domain may have either unconditional or restricted access to the authorizations. Typically, authorizations can be modeled as access to a secret key. In this paper, we discuss the rationales for such an authorization domain, and propose a specific technique to implement authorization domains by sharing the RSA function between a device in the domain and a semi-trusted network server.
N. Asokan, Sampo Sovio, Kaisa Nyberg, "Defining Authorization Domains Using Virtual Devices", International Symposium on Applications and the Internet Workshops (SAINTW'06), vol. 00, no. , pp. 331, 2003, doi:10.1109/SAINTW.2003.1210181