A technical architecture for enforcing usage control requirements in service-oriented architectures

Authors:
Agreiter Berthold;Muhammad Alam;Ruth Breu;Michael Hafner;Alexander Pretschner;Jean-Pierre Seifert;Xinwen Zhang
Affiliations:
University of Innsbruck, Innsbruck, Austria;University of Innsbruck, Innsbruck, Austria;University of Innsbruck, Innsbruck, Austria;University of Innsbruck, Innsbruck, Austria;ETH Zurich, Zurich, Switzerland;University of Innsbruck, Austria, and Samsung Information Systems America, San Jose, CA;Samsung Information Systems America, San Jose, CA
Venue:
Proceedings of the 2007 ACM workshop on Secure web services
Year:
2007

Citing 11
Cited 5

The UCONABC usage control model

ACM Transactions on Information and System Security (TISSEC)
Attestation-based policy enforcement for remote access

Proceedings of the 11th ACM conference on Computer and communications security
Property-based attestation for computing platforms: caring about properties, not mechanisms

NSPW '04 Proceedings of the 2004 workshop on New security paradigms
Trusted Computing Platforms: TCPA Technology in Context

Trusted Computing Platforms: TCPA Technology in Context
WS-Attestation: Efficient and Fine-Grained Remote Attestation on Web Services

ICWS '05 Proceedings of the IEEE International Conference on Web Services
Modeling permissions in a (U/X)ML world

ARES '06 Proceedings of the First International Conference on Availability, Reliability and Security
PRIMA: policy-reduced integrity measurement architecture

Proceedings of the eleventh ACM symposium on Access control models and technologies
Distributed usage control

Communications of the ACM - Privacy and security in highly dynamic systems
Usage Control Requirements in Mobile and Ubiquitous Computing Applications

ICSNC '06 Proceedings of the International Conference on Systems and Networks Communication
Design and implementation of a TCG-based integrity measurement architecture

SSYM'04 Proceedings of the 13th conference on USENIX Security Symposium - Volume 13
Towards remote policy enforcement for runtime protection of mobile code using trusted computing

IWSEC'06 Proceedings of the 1st international conference on Security

A general obligation model and continuity: enhanced policy enforcement engine for usage control

Proceedings of the 13th ACM symposium on Access control models and technologies
Enforcing DRM policies across applications

Proceedings of the 8th ACM workshop on Digital rights management
Trusted computing and provenance: better together

TAPP'10 Proceedings of the 2nd conference on Theory and practice of provenance
Survey: Usage control in computer security: A survey

Computer Science Review
Data usage control enforcement in distributed systems

Proceedings of the third ACM conference on Data and application security and privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

We present an approach to modeling and enforcing usage control requirements on remote clients in service-oriented architectures. Technically, this is done by leveraging a trusted software stack relying on a hardware-based root of trust and a trusted Java virtual machine to create a measurable and hence trust worthy client-side application environment. We define a model-driven approach to specifying remote policies that makes the technical intricacies of the target platform transparent to the policy modeler.