论文信息 - Role Based Access Control in Distributed Systems

Role Based Access Control in Distributed Systems

With the recent success of the Internet, security has become a real issue. One of the main goals of security can be outlined as defining an mechanism to control the access to files and applications. Over the last years, we have been implementing such a scheme that enforces a role based access control mechanism in a distributed computing environment. This work was done in the framework of the EC-RACE project SESAME. At the same time, there was a lot of work done by ECMA (European Computer Manufacturers Association) to represent the users’ credentials. Our conclusion is that enforcing such a scheme is both realistic and renders the whole system more manageable and auditable.

Joos Vandewalle | René Govaerts | Mark Vandenwauver

[1] Tom Parker. Role based access control , 1995 .

[2] Ravi S. Sandhu,et al. Role-Based Access Control Models , 1996, Computer.

[3] John Linn,et al. The Kerberos Version 5 GSS-API Mechanism , 1996, RFC.

[4] John Wray. Generic Security Service API : C-bindings , 1993, RFC.

[5] John Linn,et al. Generic Security Service Application Program Interface, Version 2 , 1997, RFC.

[6] John Linn,et al. Generic Security Service Application Program Interface , 1993, RFC.

[7] Dorothy E. Denning,et al. Cryptography and Data Security , 1982 .

[8] P. V. McMahon. SESAME V2 public key and authorisation extensions to Kerberos , 1995, Proceedings of the Symposium on Network and Distributed System Security.

[9] John T. Kohl,et al. The Kerberos Network Authentication Service (V5 , 2004 .