Cryptographic Role-Based Access Control, Reconsidered

Liu, Bin; Michalas, Antonis; Warinschi, Bogdan

Cryptographic Role-Based Access Control, Reconsidered

Liu, Bin; Michalas, Antonis; Warinschi, Bogdan (2022)

Avaa tiedosto

cRBACr.pdf (412.7Kt)

Lataukset:

Liu, Bin

Michalas, Antonis

Warinschi, Bogdan

2022

This publication is copyrighted. You may download, display and print it for Your own personal use. Commercial use is prohibited.

doi:10.1007/978-3-031-20917-8_19

Näytä kaikki kuvailutiedot

Julkaisun pysyvä osoite on
https://urn.fi/URN:NBN:fi:tuni-202302102252

Kuvaus

Peer reviewed

Tiivistelmä

<p>In this paper, we follow the line of existing study on cryptographic enforcement of Role-Based Access Control (RBAC). Inspired by the study of the relation between the existing security definitions for such system, we identify two different types of attacks which cannot be captured by the existing ones. Therefore, we propose two new security definitions towards the goal of appropriately modelling cryptographic enforcement of Role-Based Access Control policies and study the relation between our new definitions and the existing ones. In addition, we show that the cost of supporting dynamic policy update is inherently expensive by presenting two lower bounds for such systems which guarantee correctness and secure access.</p>

Kokoelmat

TUNICRIS-julkaisut [20161]