Distributed Privilege Enforcement in PACS

被引：0

作者：

Sturm, Christoph ^{[1
]}

Hunt, Ela ^{[2
]}

Scholl, Marc H. ^{[3
]}

机构：

[1] Univ Zurich, Dept Informat, CH-8006 Zurich, Switzerland

[2] Univ Strathclyde, Comp & Informat Sci, Glasgow G1 1XQ, Lanark, Scotland

[3] Univ Konstanz, Dept Comp & Informat Sci, Constance, Germany

来源：

DATA AND APPLICATIONS SECURITY XXIII, PROCEEDINGS | 2009年 / 5645卷

关键词：

ACCESS-CONTROL;

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

We present a new access control mechanism for P2P networks with distributed enforcement, called P2P Access Control System (PACS). PACS enforces powerful access control models like RBAC with administrative delegation inside a P2P network in a pure P2P manner, which is not possible in any of the currently used P2P access control mechanisms. PACS uses client-side enforcement to support the replication of confidential data. To avoid a single point of failure at the time of privilege enforcement, we use threshold cryptography to distribute the enforcement among the participants. Our analysis of the expected number of messages and the computational effort needed in PACS shows that its increased flexibility comes with an acceptable additional overhead.

引用

页码：142 / +

页数：3

共 50 条

[1] A privilege management and enforcement system for distributed resource sharing
Maly, KJ
Gupta, A
Kvande, B
Levinstein, IB
Mukkamala, R
Nanjangud, S
Olson, M
Whitney, R
Chambers, R
[J]. PROCEEDINGS OF THE 5TH WORKSHOPS ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES (WET ICE '96), 1996, : 106 - 111
[2] PMES: Privilege management and enforcement system for secure distributed resource sharing
Maly, KJ
Gupta, A
Levinstein, IB
Mukkamala, R
Kvande, B
Nanjangud, S
Olson, M
Whitney, R
Chambers, R
[J]. ADVANCED IT TOOLS, 1996, : 348 - 355
[3] A Study on Distributed PACS
Kantarci, Aylin
Onbay, To Iga Utku
[J]. ADVANCES IN COMPUTATIONAL BIOLOGY, 2010, 680 : 669 - 676
[4] DISTRIBUTED TERMINATION ENFORCEMENT
RUDALICS, M
[J]. LECTURE NOTES IN COMPUTER SCIENCE, 1992, 605 : 363 - 378
[5] Determination and Enforcement of Least-Privilege Architecture in Android
Hammad, Mahmoud
Bagheri, Hamid
Malek, Sam
[J]. 2017 IEEE INTERNATIONAL CONFERENCE ON SOFTWARE ARCHITECTURE (ICSA 2017), 2017, : 59 - 68
[6] Preserving the marital communications privilege in subpoena enforcement proceedings
Kane, J
[J]. GEORGE WASHINGTON LAW REVIEW, 1998, 66 (04) : 988 - 995
[7] A standards based distributed PACS architecture
DeJarnette, WT
Orth, A
Stockham, CD
Swearingen, R
Titton, C
[J]. MEDICAL IMAGING 1999 - PACS DESIGN AND EVALUATION: ENGINEERING AND CLINICAL ISSUES, 1999, 3662 : 37 - 50
[8] Data grid - A distributed solution to PACS
Zhang, XY
Zhang, JG
[J]. MEDICAL IMAGING 2004: PACS AND IMAGING INFORMATICS, 2004, 5 (25): : 334 - 344
[9] POLICING HOOVER'S GHOST: THE PRIVILEGE FOR LAW ENFORCEMENT TECHNIQUES
Smith, Stephen Wm.
[J]. AMERICAN CRIMINAL LAW REVIEW, 2017, 54 (01) : 233 - 275
[10] The PRIMA system for privilege management, authorization and enforcement in grid environments
Lorch, M
Adams, DB
Kafura, D
Koneni, MSR
Rathi, A
Shah, S
[J]. FOURTH INTERNATIONAL WORKSHOP ON GRID COMPUTING, PROCEEDINGS, 2003, : 109 - 116

← 1 2 3 4 5 →