论文信息 - An approach to role-based access control for digital content

An approach to role-based access control for digital content

Role-based access control is the state-of-the-art mechanism for restricting access to resources. Today, digital content is distributed via CD-ROMs and the Internet with little or no protection. Using widely available public key cryptography, we propose to extend the paradigm of role-based access control to digital content by encapsulating it into secure document containers. Certification authorities can certify that a specific user belongs to a certain group and can thus be granted access to systems (i.e. document containers) that do not know who the user actually is. Online distribution of one-time keys can be used to avoid various attacks like replays.

Edgar R. Weippl

[1] Cynthia E. Irvine,et al. Toward a taxonomy and costing method for security services , 1999, Proceedings 15th Annual Computer Security Applications Conference (ACSAC'99).

[2] Catherine A. Meadows. An outline of a taxonomy of computer security research and development , 1993, NSPW '92-93.

[3] Tim Wilkinson,et al. Trustworthy access control with untrustworthy Web servers , 1999, Proceedings 15th Annual Computer Security Applications Conference (ACSAC'99).

[4] Jeffrey B. Lotspiech,et al. Safeguarding Digital Library Contents and Users: Assuring Convenient Security and Data Quality , 1997, D Lib Mag..

[5] Henry M. Gladney,et al. Safeguarding Digital Library Contents and Users: Document Access Control , 1997, D Lib Mag..

[6] Amir Herzberg,et al. Safeguarding Digital Library Contents: Charging for Online Content , 1998, D Lib Mag..

[7] Jeffrey B. Lotspiech,et al. Safeguarding Digital Library Contents and Users: Protecting Documents Rather Than Channels , 1997, D Lib Mag..

[8] Hans Lohninger,et al. Teach/Me - Data Analysis , 1999 .

[9] Amir Herzberg,et al. Access control meets public key infrastructure, or: assigning roles to strangers , 2000, Proceeding 2000 IEEE Symposium on Security and Privacy. S&P 2000.

[10] Carl E. Landwehr,et al. A taxonomy of computer program security flaws , 1993, CSUR.