A Framework for Distributed Trust Management

Thumbnail Image

Links to Files

http://ccs.mit.edu/dell/aa2001/aa2001papers/paper4.pdf

Permanent Link

http://hdl.handle.net/11603/12642

Collections

UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

2001

Type of Work

conference papers and proceedings
Text

Department

Program

Citation of Original Publication

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.

Subjects

authorization
security
distributed trust
agents
X.509 certificates
knowledge representation
role based
UMBC Ebiquity Research Group

Abstract

This paper discusses our infrastructure for handling distributed security and trust. It outlines a method for access control across domains that handles complex inter domain trust relationships. We have developed a flexible representation of trust information in Prolog, that can model permissions and delegations. We are currently working on modeling obligations, entitlements, and prohibitions as well. This paper describes a scheme for restricting re-delegation without using a specific delegation depth. Using examples, this paper explains the internal working of our system and the trust information that flows within it.