A Policy Language for Integrating Heterogeneous Authorization Policies

In order to manage and enforce multiple heterogeneous authorization policies in distributed authorization environment, we defined the root policy specification language and its corresponding enforcing mechanism. In a root policy, the involved users and resources can be defined in coarse or fine-grained. Each involved authorization policy’s storage, trust management and enforcement can be defined independently. These authorization policies can be enforced in distributed way. Policy schemas, policy subschemas and policy hierarchies can deal with complex authorization scenarios. The context constraint component makes the root policy is a context-aware authorization system. On the other hand multiple root policies can cooperate together to complete more complicated authorization tasks.

Zhou, Wie; Meinel, Christoph (2007): A Policy Language for Integrating Heterogeneous Authorization Policies. Grid service engineering and management – the 4th international conference on grid service engineering and management – GSEM 2007. Bonn: Gesellschaft für Informatik e. V.. PISSN: 1617-5468. ISBN: 978-3-88579-211-6. pp. 9-23. Regular Research Papers. Leipzig. September 25 - 26, 2007

Schlagwörter

Access Control , Authorization Policy , XML , X.509 , Attribute Certificate

Sammlungen

P117 - GSEM 2007 - 4th Intenational Conference on Grid Service Engineering and Management

Komplettanzeige

A Policy Language for Integrating Heterogeneous Authorization Policies

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen