Vorträge und Posterpräsentationen (mit Tagungsband-Eintrag):
S. Craß, G. Joskowicz, E. Kühn:
"A Decentralized Access Control Model for Dynamic Collaboration of Autonomous Peers";
Vortrag: 11th EAI International Conference on Security and Privacy in Communication Networks (SecureComm),
Dallas, USA;
26.10.2015
- 29.10.2015; in: "Security and Privacy in Communication Networks",
LNICST, Springer,
164
(2015),
ISBN: 978-3-319-28864-2;
S. 519
- 537.
Kurzfassung englisch:
Distributed applications are often composed of autonomous
components that are controlled by different stakeholders. Authorization in such a scenario has to be enforced in a decentralized way so that administrators retain control over their respective resources. In this paper, we define a flexible access control model for a data-driven coordination middleware that abstracts the collaboration of autonomous peers. It supports the definition of fine-grained policies that depend on authenticated subject attributes, content properties and context data. To enable peers to act on behalf of others, chained delegation is supported
and permissions depend on trust assumptions about nodes along this
chain. Besides access to data, also service invocations, dynamic behavior changes and policy updates can be authorized in a unified way. We show how this access control model can be integrated into a secure middleware architecture and provide example policies for simple coordination patterns.
Schlagworte:
ABAC; Delegation; P2P; Coordination middleware
"Offizielle" elektronische Version der Publikation (entsprechend ihrem Digital Object Identifier - DOI)
http://dx.doi.org/10.1007/978-3-319-28865-9_28
Erstellt aus der Publikationsdatenbank der Technischen Universität Wien.