Design and implementation of distributed access control infrastructures for federations of autonomous domains

Authors:
Petros Belsis;Stefanos Gritzalis;Christos Skourlas;Vassillis Tsoukalas
Affiliations:
Department of Information and Communication Systems Engineering University of the Aegean, Karlovassi, Samos, Greece;Department of Information and Communication Systems Engineering University of the Aegean, Karlovassi, Samos, Greece;Department of Industrial Informatics, Technological Education Institute, Kavala, Greece;Department of Informatics, Technological Education Institute, Athens, Greece
Venue:
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Year:
2007

Citing 3
Cited 1

An algebra for composing access control policies

ACM Transactions on Information and System Security (TISSEC)
Towards Automated Negotiation of Access Control Policies

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Reasoning about Joint Administration of Access Policies for Coalition Resources

ICDCS '02 Proceedings of the 22 nd International Conference on Distributed Computing Systems (ICDCS'02)

Security for dynamic service-oriented eCollaboration: architectural alternatives and proposed solution

TrustBus'10 Proceedings of the 7th international conference on Trust, privacy and security in digital business

Quantified Score

Hi-index	0.00

Visualization

Abstract

Federations of autonomous domains allow resource sharing in a highly dynamic manner, improving organizational response times and facilitating cooperation between different information systems. To accomplish this, it is essential to provide a scalable and flexible mechanism that allows security management and acts at application level independently of operating system or platform. In this paper we present a scalable solution that enables interoperation between different systems participating in a dynamic federation, while it also allows the participating systems to retain their autonomy; we present the software architecture of this distributed access control enforcement mechanism and describe our implementation choices.