Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

WAVE: A Decentralized Authorization Framework with Transitive Delegation

Conference · · Proceedings of the 28th USENIX Security Symposium
OSTI ID:1772706
 [1];  [2];  [2];  [2];  [2];  [2];  [2];  [2]
  1. Univ. of California, Berkeley, CA (United States); CIEE/UC Berkeley
  2. Univ. of California, Berkeley, CA (United States)
+ Show Author Affiliations
Most deployed authorization systems rely on a central trusted service whose compromise can lead to the breach of millions of user accounts and permissions. We present WAVE, an authorization framework offering decentralized trust: no central services can modify or see permissions and any participant can delegate a portion of their permissions autonomously. To achieve this goal, WAVE adopts an expressive authorization model, enforces it cryptographically, protects permissions via a novel encryption protocol while enabling discovery of permissions, and stores them in an un-trusted scalable storage solution. WAVE provides competitive performance to traditional authorization systems relying on central trust. Lastly, it is an open-source artifact and has been used for two years for controlling 800 IoT devices.
Research Organization:
Univ. of California, Berkeley, CA (United States)
Sponsoring Organization:
USDOE Office of Energy Efficiency and Renewable Energy (EERE), Energy Efficiency Office. Building Technologies Office
DOE Contract Number:
EE0007682
OSTI ID:
1772706
Conference Information:
Journal Name: Proceedings of the 28th USENIX Security Symposium
Country of Publication:
United States
Language:
English

Similar Records

Democratizing Authority in the Built Environment
Journal Article · Mon Dec 03 19:00:00 EST 2018 · ACM Transactions on Sensor Networks · OSTI ID:1772690
Democratizing Authority in the Built Environment
Conference · Tue Nov 07 23:00:00 EST 2017 · Proceedings of The 4th International Conference on Systems for Energy-Efficient Built Environments (BuildSys ’17) · OSTI ID:1420424
Blockchain-Enabled Secure Device-to-Device Communication in Software-Defined Networking
Conference · Sat Jun 01 00:00:00 EDT 2024 · OSTI ID:2447320

Related Subjects

32 ENERGY CONSERVATION, CONSUMPTION, AND UTILIZATION
Security