Skip to Main content Skip to Navigation
Conference papers

Enforcing Usage Constraints on Credentials for Web Applications

Abstract : For using credential-based access control effectively, recent work identified the need to enforce usage constraints also on credentials. The enforcement of such constraints has not yet been investigated for web applications, although it is relevant when credential-based access control is employed in a web application. This article proposes an approach suitable for enforcing usage constraints on credentials in web applications. More concretely, we present a novel algorithm and an implementation of this algorithm that construct constraint-compliant proofs for credential-based access control policies. We proved that our solution is correct and showed that it is also efficient through extensive experiments.
Document type :
Conference papers
Complete list of metadatas

Cited literature [9 references]  Display  Hide  Download

https://hal.inria.fr/hal-01345100
Contributor : Hal Ifip <>
Submitted on : Wednesday, July 13, 2016 - 10:53:26 AM
Last modification on : Wednesday, July 13, 2016 - 11:18:42 AM

File

337885_1_En_8_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Jinwei Hu, Heiko Mantel, Sebastian Ruhleder. Enforcing Usage Constraints on Credentials for Web Applications. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. pp.112-125, ⟨10.1007/978-3-319-18467-8_8⟩. ⟨hal-01345100⟩

Share

Metrics

Record views

124

Files downloads

133