Differential data protection for dynamic distributed applications

Author

Widener, Patrick ; Schwan, Karsten ; Bustamante, Fabián E.

Author_Institution

Coll. of Comput., Georgia Inst. of Technol., Atlanta, GA, USA

fYear

2003

fDate

8-12 Dec. 2003

Firstpage

396

Lastpage

405

Abstract

We present a mechanism for providing differential data protection to publish/subscribe distributed systems, such as those used in peer-to-peer computing, grid environments, and others. This mechanism, termed "security overlays", incorporates credential-based communication channel creation, subscription and extension. We describe a conceptual model of publish/subscribe services that is made concrete by our mechanism. We also present an application, active video streams, whose reimplementation using security overlays allows it to react to high-level security policies specified in XML without significant performance loss or the necessity for embedding policy-specific code into the application.

Keywords

XML; authorisation; content management; middleware; XML; access control; active video streams; differential data protection; distributed systems; publish/subscribe services; security policies; Communication channels; Communication system security; Concrete; Data security; Peer to peer computing; Performance loss; Protection; Streaming media; Subscriptions; XML;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Security Applications Conference, 2003. Proceedings. 19th Annual

Print_ISBN

0-7695-2041-3

Type

conf

DOI

10.1109/CSAC.2003.1254344

Filename

1254344