Abstract | ||
---|---|---|
Emerging trust and risk management systems provide a framework for principals to determine whether they will exchange resources, without requiring a complete definition of their credentials and intentions. Most distributed access control architectures have far more rigid policy rules, yet in many respects aim to solve a similar problem. This paper elucidates the similarities between trust management and distributed access control systems by demonstrating how the OASIS access control system and its rôle-based policy language can be extended to make decisions on the basis of trust and risk analyses rather than on the basis of credentials alone. We apply our new model to the prototypical example of a file storage and publication service for the Grid, and test it using our Prolog-based OASIS implementation. |
Year | DOI | Venue |
---|---|---|
2004 | 10.1145/990036.990062 | SACMAT |
Keywords | Field | DocType |
emerging trust,rigid policy rule,access control system,access control architecture,oasis access control system,le-based policy language,risk management system,prolog-based oasis implementation,role-based access control policy,trust management,complete definition,risk management,trust,role based access control,risk,access control | Computer access control,Computer science,Computer security,Role-based access control,Knowledge management,File storage,Prolog,Risk management information systems,Access control,Grid | Conference |
ISBN | Citations | PageRank |
1-58113-872-5 | 76 | 3.91 |
References | Authors | |
14 | 5 |
Name | Order | Citations | PageRank |
---|---|---|---|
Nathan Dimmock | 1 | 307 | 22.12 |
András Belokosztolszki | 2 | 137 | 7.00 |
David Eyers | 3 | 118 | 8.65 |
Jean Bacon | 4 | 2245 | 177.11 |
Ken Moody | 5 | 935 | 85.75 |