Skip to Main content Skip to Navigation
Conference papers

Enforcing Usage Constraints on Credentials for Web Applications

Abstract : For using credential-based access control effectively, recent work identified the need to enforce usage constraints also on credentials. The enforcement of such constraints has not yet been investigated for web applications, although it is relevant when credential-based access control is employed in a web application. This article proposes an approach suitable for enforcing usage constraints on credentials in web applications. More concretely, we present a novel algorithm and an implementation of this algorithm that construct constraint-compliant proofs for credential-based access control policies. We proved that our solution is correct and showed that it is also efficient through extensive experiments.
Document type :
Conference papers
Complete list of metadata

Cited literature [9 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Wednesday, July 13, 2016 - 10:53:26 AM
Last modification on : Wednesday, July 13, 2016 - 11:18:42 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Jinwei Hu, Heiko Mantel, Sebastian Ruhleder. Enforcing Usage Constraints on Credentials for Web Applications. 30th IFIP International Information Security Conference (SEC), May 2015, Hamburg, Germany. pp.112-125, ⟨10.1007/978-3-319-18467-8_8⟩. ⟨hal-01345100⟩



Record views


Files downloads