P-Hera: Scalable fine-grained access control for P2P infrastructures

Authors:
Bruno Crispo;Swaminathan Sivasubramanian;Pietro Mazzoleni;Elisa Bertino
Affiliations:
Department of Computer Science, Vrije Universiteit, Amsterdam;Department of Computer Science, Vrije Universiteit, Amsterdam;Department of Computer Science University of Milan,Italy;Department of Computer Science Purdue University and Cerias, USA
Venue:
ICPADS '05 Proceedings of the 11th International Conference on Parallel and Distributed Systems - Volume 01
Year:
2005

Citing 0
Cited 8

An access control mechanism for P2P collaborations

DaMaP '08 Proceedings of the 2008 international workshop on Data management in peer-to-peer systems
Performance evaluation of XACML PDP implementations

Proceedings of the 2008 ACM workshop on Secure web services
Distributed Privilege Enforcement in PACS

Proceedings of the 23rd Annual IFIP WG 11.3 Working Conference on Data and Applications Security XXIII
Pace: Privacy-Protection for Access Control Enforcement in P2P Networks

Globe '09 Proceedings of the 2nd International Conference on Data Management in Grid and Peer-to-Peer Systems
Towards access control aware P2P data management systems

Proceedings of the 2009 EDBT/ICDT Workshops
Access control management in open distributed virtual repositories and the grid

OTM'07 Proceedings of the 2007 OTM confederated international conference on On the move to meaningful internet systems: CoopIS, DOA, ODBASE, GADA, and IS - Volume Part II
Optimistic access control for distributed collaborative editors

Proceedings of the 2011 ACM Symposium on Applied Computing
Orchestrating access control in peer data management systems

EDBT'06 Proceedings of the 2006 international conference on Current Trends in Database Technology

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we present P-Hera, a peer-to-peer (P2P) infrastructure for scalable and secure content hosting. PHera allows the users and content owners to dynamically establish trust using fine-grained access control. In P-Hera, resource owners can specify fine-grained restrictions on who can access their resources and which user can access which part of data. We differentiate our work with traditional works of fine-grained access control on Web services, as our system in addition to handling access constrains of the service provider (which is the case in Web services), it also handles security constrains regarding actions performed on data: replication and modification. We believe this is of immense significance for wide-range of applications such as data Grids, Information Grids and Web Content Delivery Networks. In addition to presenting the overall system architecture, we also study the problem of evaluating these fine-grained access policies in depth and propose a novel means of organizing these policies that can result in faster evaluation. We demonstrate the effectiveness of our approach using prototype implementation.