Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Motivations
To allow people to delegate roles to other people, so that they can perform tasks that were previously denied to them To ease the management of permissions through distribution and delegation, which aids scalability (as opposed to centralised control) To facilitate inter-organisation federations, by allowing one organisation to leverage the role allocations in another organisation and thereby give them access to their resources in a controlled manner
Assigns privilege
Privilege Holder
SOA
Bill Issues
AC to Issues AC to
AA
Alice
Issues AC to
Delegation Policy
End Entity
Bob
DIS Communications
DIS Java
Web Service Interface
Apache
Policy Issuers AC
DIS PEP
Web service interface
Authorisation
PDP IssueAC
publishAC
Sign AC
LDAP server
Demonstration
The DIS demo is available at https://issrg-testbed.cs.kent.ac.uk:8443/dis.html
Acknowledgement This work was funded under the JISC DyVOSE project