Framework for Authentication and Access Control of Client-Server Group Communication Systems
نویسندگان
چکیده
Group communication systems are building tools for distributed and collaborative applications that often run in an insecure environment. Although necessary, basic security services such as data secrecy and data integrity are not sufficient for a secure group communication system. Entity authentication and access control services are needed to provide the application with a policy enforcement mechanism. In this paper we present the design of a flexible and modular authentication and access control framework for client-server group communication systems. We discuss some of the challenges when designing such a framework and show an implementation of the framework in the Spread wide-area group communication toolkit.
منابع مشابه
CERIAS Tech Report 2003-31 A FRAMEWORK FOR ROLE-BASED ACCESS CONTROL IN GROUP COMMUNICATION SYSTEMS
In addition to basic security services such as confidentiality, integrity and data source authentication, a secure group communication system should also provide authentication of participants and access control to group resources. While considerable research has been conducted on providing confidentiality and integrity for group communication, less work focused on group access control services...
متن کاملCERIAS Tech Report 2004-74 A FRAMEWORK FOR ROLE-BASED ACCESS CONTROL IN GROUP COMMUNICATION SYSTEMS
In this paper we analyze the requirements access control mechanisms must fulfill in the context of group communication and define a framework for supporting fine-grained access control in client-server group communication systems. Our framework combines rolebased access control mechanisms with environment parameters (time, IP address, etc.) to provide support for a wide range of applications wi...
متن کاملA Framework for Role-Based Access Control in Group Communication Systems
In this paper we analyze the requirements access control mechanisms must fulfill in the context of group communication and define a framework for supporting fine-grained access control in client-server group communication systems. Our framework combines rolebased access control mechanisms with environment parameters (time, IP address, etc.) to provide support for a wide range of applications wi...
متن کاملWebGroup: A Secure Group Access Control Tool for the World-Wide Web
We present an integrated secure group access control tool to support workgroups on the World-Wide Web. The system enables user authentication, encrypted communication and fine-grained group access control. The tool comprises two proxies: one running on the server side and the other one on the client side. Typically the browser sends a query to the client side proxy which contacts the server sid...
متن کاملA New Mutuel Kerberos Authentication Protocol for Distributed Systems
In recent years, distributed systems, including cloud computing, are becoming increasingly popular. They are based on traditional security mechanisms that focus on access control policies and the use of cryptographic primitives. However, these mechanisms do not implement some more advanced security properties, including authentication policies. Kerberos V5, the most recent version, is a success...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2001