A community authorization service for group collaboration

被引:125
作者
Pearlman, L [1 ]
Welch, V [1 ]
Foster, I [1 ]
Kesselman, C [1 ]
Tuecke, S [1 ]
机构
[1] Univ So Calif, Inst Informat Sci, Los Angeles, CA 90089 USA
来源
THIRD INTERNATION WORKSHOP ON POLICIES FOR DISTRIBUTED SYSTEMS AND NETWORKS, PROCEEDINGS | 2002年
关键词
D O I
10.1109/POLICY.2002.1011293
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
In "Grids" and "collaboratories," we find distributed communities of resource providers and resource consumers, within which often complex and dynamic policies govern who can use which resources for which purpose. We propose a new approach to the representation, maintenance, and enforcement of such policies that provides a scalable mechanism for specifying and enforcing these policies. Our approach allows resource providers to delegate some of the authority for maintaining fine-grained access control policies to communities, while still maintaining ultimate control over their resources. We also describe a prototype implementation of this approach and an application in a data management context.
引用
收藏
页码:50 / 59
页数:10
相关论文
共 30 条
[11]  
GASSER M, 1990, P 1990 IEEE S RES SE
[12]  
HARDJONO T, COMPUTER COMMUNICATI, V17, P230
[13]  
HOWELL J, 2000, P 2000 S OP SYST DES
[14]  
JAJODIA S, 1997, IEEE S SECURITY PRIV
[15]  
JOHNSTON W, 1996, USE CONDITION CTR AP
[16]  
JOHNSTON WE, 1999, P 8 IEEE S HIGH PERF
[17]  
KORTESNIEMI Y, 2000, NETWORK DISTRIBUTED
[18]  
LINN J, 1993, 1508 RFC
[19]  
MEDER S, 2001, GSS API EXTENSIONS
[20]  
MULLENDER SJ, COMPUTER J, V29, P289
123