Publication | Closed Access
Revocations - A classification
59
Citations
8
References
2001
Year
Unknown Venue
Ownership StructureMain Revocation CharacteristicsEngineeringLogical Access ControlInformation SecurityInformation LeakageAccountingAccess ControlLawConfidentialityIntellectual PropertyRight ManagementOwnership-based FrameworkAuthentication Access ControlRegulationData SecurityAuthorization Policies
In ownership‑based access control, granting access and administrative rights creates chains of granted accesses. The study investigates how different revocation schemes affect these access chains. The authors classify revocation schemes along propagation, dominance, and resilience, and compare them to existing models. The study identifies three key revocation characteristics: propagation, dominance, and resilience.
In an ownership-based framework for access control, with the possibility of granting access and administrative rights, chains of granted accesses will form. This is a comprehensive study of the problem of revoking such rights, and on the impact different revocation schemes may have on the chains. Three main revocation characteristics are identified: the extent of the revocation to other grantees (propagation), the effect on other grants to the same grantee (dominance), and the permanence of the negation of rights (resilience). A classification is devised using these three dimensions. The different schemes thus obtained are described, and compared to other models from the literature.
| Year | Citations | |
|---|---|---|
Page 1
Page 1