Logo des Repositoriums
 

Token Based Authorization

dc.contributor.authorBaruzzi, Giovanni A.
dc.contributor.editorRoßnagel, Heiko
dc.contributor.editorSchunck, Christian H.
dc.contributor.editorMödersheim, Sebastian
dc.contributor.editorHühnlein, Detlef
dc.date.accessioned2020-05-27T12:09:23Z
dc.date.available2020-05-27T12:09:23Z
dc.date.issued2020
dc.description.abstractA secure, scalable, fine grained and flexible access control is extremely important for the digital society. The approaches used until now (RBAC, Groups in an LDAP Directory, XACML) alone may not be able to deliver to this challenge. Building from past experiences in the Industry, we propose an Access Management Framework where the central role is played by a token containing all the information needed to implement fine grained access control. This Authorization Token should be signed by the approver and embedded into a “claim” to the application at session time. The application, after checking the validity of the token will control access to the desired resource. In this way we can achieve fine granular access control, scalability and independence from network topologies.en
dc.identifier.doi10.18420/ois2020_16
dc.identifier.isbn978-3-88579-699-2
dc.identifier.pissn1617-5468
dc.identifier.urihttps://dl.gi.de/handle/20.500.12116/33175
dc.language.isoen
dc.publisherGesellschaft für Informatik e.V.
dc.relation.ispartofOpen Identity Summit 2020
dc.relation.ispartofseriesLecture Notes in Informatics (LNI) - Proceedings, Volume P-305
dc.subjectAccess Control
dc.subjectToken
dc.subjectFine-grained Access
dc.subjectAuthorization
dc.subjectClaim.
dc.titleToken Based Authorizationen
dc.typeText/Conference Paper
gi.citation.endPage184
gi.citation.publisherPlaceBonn
gi.citation.startPage179
gi.conference.date26.-27. May 2020
gi.conference.locationCopenhagen, Denmark
gi.conference.sessiontitleShort Paper

Dateien

Originalbündel
1 - 1 von 1
Vorschaubild nicht verfügbar
Name:
proceedings-16.pdf
Größe:
97.31 KB
Format:
Adobe Portable Document Format