Realizing a Secure Federation of Multi-institutional Service Systems

Today, many organizations and individuals are creating a large variety of services. However, even if these services are connected through a network, there are very few examples where such services operate in an interconnected way. One reason for this is the lack of systems that are able to coordinate multiple systems, with different schemes for user management, in a safe way with adequate authorization. Furthermore, the same problem arises when users carrying mobile terminals wishes to connect to and use services at location that they are visiting. In this paper, we are proposing an extended framework for service provision based on Kerberos, allowing groups of services and information about ordinary users that are managed on an organizational or personal level to be combined, handling service systems with different management bases as units of gSpaceh, while defining the security relations between different spaces.

[1]  Robert R. Moeller,et al.  Network Security , 1993, Inf. Secur. J. A Glob. Perspect..

[2]  Klara Nahrstedt,et al.  A Middleware Infrastructure for Active Spaces , 2002, IEEE Pervasive Comput..

[3]  Armando Fox,et al.  The Interactive Workspaces Project: Experiences with Ubiquitous Computing Rooms , 2002, IEEE Pervasive Comput..

[4]  Radia J. Perlman,et al.  Network security - private communication in a public world , 2002, Prentice Hall series in computer networking and distributed systems.

[5]  Mahadev Satyanarayanan,et al.  Scalable, secure, and highly available distributed file access , 1990, Computer.

[6]  Theodore Y. Ts'o,et al.  Kerberos: an authentication service for computer networks , 1994, IEEE Communications Magazine.

[7]  Ben Y. Zhao,et al.  An architecture for a secure service discovery service , 1999, MobiCom.

[8]  Gregory D. Abowd,et al.  The Aware Home: A Living Laboratory for Ubiquitous Computing Research , 1999, CoBuild.