A decentralized authorization mechanism for e-business applications

by: Z Miklos

Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on (2002), pp. 446-450.

View FullText article

IEEE Explore

Reviews [Write a review of this article]

There are no reviews of this article

Notes for this article

weqa : 1 私人注释和 0 公开注释 @本条文献. 如果你是 weqa 那么你只有登录网站才能看到私人注释 .

Find related articles from these CiteULike users

weqa

Find related articles with these CiteULike tags

authorization, decentralized

摘要

E-business applications need robust and powerful mechanisms to authorize security-critical actions. These actions can be very complex, since they can be initiated not only by human users but also by applications or software agents. Existing authorization mechanisms do not scale for large number of users if the trust relations are dynamic and fail to provide reliable authorization among strangers. Our mechanism uses authorization relevant attributes to define the policy. The attributes are assigned to principals in a decentralized manner. We also present a method to reduce the financial losses which may arise if the authorization mechanism fails. We conclude the paper with our plans for future research.

@inproceedings{citeulike:1578333, abstract = {E-business applications need robust and powerful mechanisms to authorize security-critical actions. These actions can be very complex, since they can be initiated not only by human users but also by applications or software agents. Existing authorization mechanisms do not scale for large number of users if the trust relations are dynamic and fail to provide reliable authorization among strangers. Our mechanism uses authorization relevant attributes to define the policy. The attributes are assigned to principals in a decentralized manner. We also present a method to reduce the financial losses which may arise if the authorization mechanism fails. We conclude the paper with our plans for future research.}, author = {Miklos, Z. }, booktitle = {Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on}, citeulike-article-id = {1578333}, journal = {Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on}, keywords = {authorization, decentralized}, pages = {446--450}, posted-at = {2007-08-21 06:12:09}, priority = {2}, title = {A decentralized authorization mechanism for e-business applications}, url = {http://ieeexplore.ieee.org/xpls/abs\_all.jsp?arnumber=1045938}, year = {2002} }

RIS record

TY - CONF ID - citeulike:1578333 L3 - citeulike-article-id:1578333 N2 - E-business applications need robust and powerful mechanisms to authorize security-critical actions. These actions can be very complex, since they can be initiated not only by human users but also by applications or software agents. Existing authorization mechanisms do not scale for large number of users if the trust relations are dynamic and fail to provide reliable authorization among strangers. Our mechanism uses authorization relevant attributes to define the policy. The attributes are assigned to principals in a decentralized manner. We also present a method to reduce the financial losses which may arise if the authorization mechanism fails. We conclude the paper with our plans for future research. JF - Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on EP - 450 TI - A decentralized authorization mechanism for e-business applications T2 - Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on SP - 446 KW - authorization KW - decentralized AU - Miklos, Z PY - 2002/// UR - http://ieeexplore.ieee.org/xpls/abs_all.jsp?arnumber=1045938 ER -

RIS BibTeX