A Conceptual Authorization Model for Web Services

Paul J. Leach,Blair B. Dillaway,Praerit Garg,Chris Kaler,Brian A. Lamacchia,Butler W. Lampson,John L. Manferdelli,Rick Rashid,John P. Shewchuk,Daniel R. Simon,Richard B. Ward

A Conceptual Authorization Model for Web Services

2004

Paul J. Leach
Blair B. Dillaway
Praerit Garg
Chris Kaler
Brian A. Lamacchia
Butler W. Lampson
John L. Manferdelli
Rick Rashid
John P. Shewchuk
Daniel R. Simon
Richard B. Ward

We have briefly described a conceptual model for authorizing web services. If one contrasts it with “more traditional” models, the more interesting differences include: authorization based not just on user identity and group memberships but also on attributes of users, support for partial trust on attributes as well as user identity and group memberships, trust and authorization policy that can be arguments to requests from untrusted clients, as long as they originate with parties trusted to set such policy.

Keywords:

Computer security model
Web service
World Wide Web
Conceptual model
Authorization
Network security
Computer security
Object-oriented programming
Inter-process communication
Computer science
Internet privacy
security context

Correction
Source
Cite
Save
Machine Reading By IdeaReader

References

Citations