Talks and Poster Presentations (with Proceedings-Entry):
S. Craß, G. Joskowicz, E. Kühn:
"A Decentralized Access Control Model for Dynamic Collaboration of Autonomous Peers";
Talk: 11th EAI International Conference on Security and Privacy in Communication Networks (SecureComm),
Dallas, USA;
2015-10-26
- 2015-10-29; in: "Security and Privacy in Communication Networks",
LNICST, Springer,
164
(2015),
ISBN: 978-3-319-28864-2;
519
- 537.
English abstract:
Distributed applications are often composed of autonomous
components that are controlled by different stakeholders. Authorization in such a scenario has to be enforced in a decentralized way so that administrators retain control over their respective resources. In this paper, we define a flexible access control model for a data-driven coordination middleware that abstracts the collaboration of autonomous peers. It supports the definition of fine-grained policies that depend on authenticated subject attributes, content properties and context data. To enable peers to act on behalf of others, chained delegation is supported
and permissions depend on trust assumptions about nodes along this
chain. Besides access to data, also service invocations, dynamic behavior changes and policy updates can be authorized in a unified way. We show how this access control model can be integrated into a secure middleware architecture and provide example policies for simple coordination patterns.
Keywords:
ABAC; Delegation; P2P; Coordination middleware
"Official" electronic version of the publication (accessed through its Digital Object Identifier - DOI)
http://dx.doi.org/10.1007/978-3-319-28865-9_28
Created from the Publication Database of the Vienna University of Technology.