000000014 001__ 14
000000014 005__ 20130522141943.0
000000014 037__ $$aLERSSE-RefJnlPaper-2005-001
000000014 041__ $$aeng
000000014 100__ $$aKonstantin Beznosov
000000014 100__ $$aYi Deng
000000014 100__ $$aBob Blakley
000000014 100__ $$aCarol Burt
000000014 100__ $$aJohn Barkley
000000014 245__ $$aA Resource Access Decision Service for CORBA-based Distributed Systems
000000014 260__ $$c2005-10-16
000000014 520__ $$aDecoupling authorization logic from application logic allows applications with fine-grain access control requirements to be independent from a particular access control policy and from factors that are used in authorization decisions as well as access control models, no matter how dynamic those polices and factors are. It also enables elaborate and consistent access control policies across heterogeneous systems. We present design of a service for re-source access authorization in distributed systems. The service enables to decouple authorization logic from application functionality. Although the described service is based on CORBA technology, the design approach can be successfully used in any distributed computing environment.
000000014 6531_ $$aEngineering Security Mechanisms
000000014 6531_ $$aRAD
000000014 6531_ $$aResource Access Decision
000000014 6531_ $$aCORBA
000000014 6531_ $$aaccess control
000000014 6531_ $$aauthorization service
000000014 8560_ $$fqiangw@ece.ubc.ca
000000014 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/14/files/14.pdf$$yTransfer from CDS 0.99.7
000000014 909C4 $$pKonstantin Beznosov, Yi Deng, Bob Blakley, Carol Burt, John Barkley, "A Resource Access Decision Service for CORBA-based Distributed Systems," in Proceedings of the Annual Computer Security Applications Conference (ACSAC), Phoenix, Arizona, U.S.A., 6-10 December, 1999, pp.310-319.
000000014 980__ $$aRefConfPaper