USENIX Technical Program - Abstract - Security Symposium 99

USENIX Technical Program - Abstract - Security Symposium 99

Offline Delegation

Arne Helme and Tage Stabell-Kulø, Department of Computer Science, University of Tromsø, Norway

Abstract

This article describes mechanisms for offline delegation of access rights to files maintained by a distributed ``File Repository''. The mechanisms are designed for a target environment where personal machines are used at times when critical services, such as authentication and authorization services, are not accessible. We demonstrate how valid delegation credentials can be transferred verbally without the use of shared secrets.

Our main result shows that delegation of access rights can be accomplished in a system that uses public-key encryption for secrecy and integrity, without forcing the user to rely on a trusted third party, and without requiring connection to the infrastructure. The implementation runs on a contemporary Personal Digital Assistant (PDA); the performance is satisfactory.

View the full text of this paper in HTML form, PDF form, and PostScript form.
If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
To become a USENIX Member, please see our Membership Information.

Need help? Use our Contacts page.

Last changed: 26 Feb 2002 ml

Technical Program

Conference index

USENIX home