Decentralized access control in distributed file systems

被引：21

作者：

Miltchev, Stefan ^{[1
]}

Smith, Jonathan M.

Prevelakis, Vassilis ^{[2
]}

Keromytis, Angelos ^{[3
]}

Ioannidis, Sotiris ^{[4
]}

机构：

[1] Univ Penn, Dept Comp & Informat Sci, Philadelphia, PA 19104 USA

[2] Drexel Univ, Philadelphia, PA 19104 USA

[3] Columbia Univ, New York, NY 10027 USA

[4] Fdn Res & Technol Hellas, Inst Comp Sci, Hellas, Greece

来源：

ACM COMPUTING SURVEYS | 2008年 / 40卷 / 03期

基金：

美国国家科学基金会;

关键词：

management; security; authentication; authorization; certificates; credentials; decentralized access control; networked file systems; trust management;

D O I：

10.1145/1380584.1380588

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

The Internet enables global sharing of data across organizational boundaries. Distributed file systems facilitate data sharing in the form of remote file access. However, traditional access control mechanisms used in distributed file systems are intended for machines under common administrative control, and rely on maintaining a centralized database of user identities. They fail to scale to a large user base distributed across multiple organizations. We provide a survey of decentralized access control mechanisms in distributed file systems intended for large scale, in both administrative domains and users. We identify essential properties of such access control mechanisms. We analyze both popular production and experimental distributed file systems in the context of our survey.

引用

页数：30

共 82 条

[1]

ADAMS C, 1996, 2025 RFC BELL NO RES

[2]

ANDERSON TE, 1995, P 15 S OP SYST PRINC

[3]

[Anonymous], 2001, UCBCSD011141

[4]

[Anonymous], 2401 RFC INT ENG TAS

[5]

[Anonymous], 1999, 2246 RFC INT ENG TAS

[6]

[Anonymous], 3280 RFC

[7]

[Anonymous], P 15 ACM S OP SYST P

[8]

[Anonymous], 2003, P 19 ACM S OP SYST P, DOI DOI 10.1145/945445.945452

[9]

BAIZE E, 1998, 2478 RFC

[10]

BALENSON D, 1993, 1423 RFC IAB IRTF PS

← 1 2 3 4 5 6 7 8 9 →