000000058 001__ 58
000000058 005__ 20130522141952.0
000000058 037__ $$aLERSSE-PRESENTATION-2005-027
000000058 041__ $$aeng
000000058 100__ $$aKonstantin Beznosov
000000058 245__ $$aJAMES: Junk Authorizations for Massive-scale Enterprise Services
000000058 260__ $$c2005-10-16
000000058 520__ $$aThe request-response paradigm used for distributed access control solutions commonly leads to point-to-point (PTP) architectures with security enforcement logic obtaining decisions from the authorization servers through remote procedure calls. In massive-scale and complex enterprises, PTP authorization architectures result in fragile and sub-efficient solutions. The architectures also fail to exploit virtually free CPU and network bandwidth resources. This talk describes the approach taken by JAMES project to leverage publish-subscribe architectures for increasing failure resilience and performance through flooding delivery channels with speculatively pre-computed authorizations and recycling them on just-in-time basis. The talk also provides a brief overview of other research projects conducted at the Laboratory for Education and Research in Secure Systems Engineering (LERSSE), the University of British Columbia, Vancouver, Canada
000000058 6531_ $$aJAMES
000000058 6531_ $$aSAAM
000000058 6531_ $$aaccess control
000000058 6531_ $$aauthorization
000000058 6531_ $$apublish-subscribe
000000058 6531_ $$aEngineering Security Mechanisms
000000058 8560_ $$fqiangw@ece.ubc.ca
000000058 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/58/files/58.pdf$$yTransfer from CDS 0.99.7
000000058 909C4 $$pKonstantin Beznosov, "JAMES: Junk Authorizations for	Massive-scale Enterprise Services," given at the School of Computing and	Information Sciences, Florida International University, Miami, Florida, USA,	August 15, 2005, pp.29. 
000000058 980__ $$aPRESENTATION