Object Security Attributes: Enabling Application-Specific Access Control in Middleware
On the Move to Meaningful Internet Systems, 2002 - DOA/CoopIS/ODBASE 2002 Confederated International Conferences DOA, CoopIS and ODBASE 2002
Access control with IBM Tivoli access manager
ACM Transactions on Information and System Security (TISSEC)
Integrating PMI services in CORBA applications
Computer Standards & Interfaces - CORBA: protocols, applications, process models and standards
An Approach for Modeling and Analysis of Security System Architectures
IEEE Transactions on Knowledge and Data Engineering
An access control framework for business processes for web services
Proceedings of the 2003 ACM workshop on XML security
On the benefits of decomposing policy engines into components
ARM '04 Proceedings of the 3rd workshop on Adaptive and reflective middleware
Implementing a modular access control service to support application-specific policies in CaesarJ
AOMD '05 Proceedings of the 1st workshop on Aspect oriented middleware development
Flooding and recycling authorizations
NSPW '05 Proceedings of the 2005 workshop on New security paradigms
A comparison of two approaches for achieving flexible and adaptive security middleware
Proceedings of the 2008 workshop on Middleware security
A flexible architecture for enforcing and composing policies in a service-oriented environment
DAIS'07 Proceedings of the 7th IFIP WG 6.1 international conference on Distributed applications and interoperable systems
Authorization enforcement usability case study
ESSoS'11 Proceedings of the Third international conference on Engineering secure software and systems
A dynamic security framework for ambient intelligent systems: a smart-home based eHealth application
Transactions on computational science X
SEM'04 Proceedings of the 4th international conference on Software Engineering and Middleware
An authorization architecture for web services
DBSec'05 Proceedings of the 19th annual IFIP WG 11.3 working conference on Data and Applications Security
CBSE'05 Proceedings of the 8th international conference on Component-Based Software Engineering
| Hi-index | 0.00 |
Decoupling authorization logic from application logic allows applications with fine-grain access control requirements to be independent from a particular access control policy and from factors that are used in authorization decisions as well as access control models, no matter how dynamic those polices and factors are. It also enables elaborate and consistent access control policies across heterogeneous systems. We present design of a service for resource access authorization in distributed systems. The service enables to decouple authorization logic from application functionality. Although the described service is based on CORBA technology, the design approach can be successfully used in any distributed computing environment.