Title :
Access control and authorization plan for customer control of network services
Author_Institution :
GTE Lab. Inc., Waltham, MA, USA
Abstract :
One challenge for future network service systems is to make customer control feasible while ensuring the security of both the customer´s service and the control system itself. The author addresses the security problems that result from direct customer control. He argues that simple security mechanisms, such as access control lists, used in general-purpose computer systems are insufficient for administration control and authority delegation in network service systems. He proposes a security policy called an authorization policy that is suitable for both ensuring network security and facilitating administration and authorization control. This security policy is enforced through a unified protection mechanism called an access control hierarchy. An example is given to demonstrate the application of this access control hierarchy in existing network services
Keywords :
security of data; telecommunication network management; telecommunication services; telecommunications computing; access control hierarchy; authorization policy; customer control; network security; network service systems; security policy; Access control; Authorization; Communication system control; Computer networks; Computer security; Control systems; Data security; Protection; Spatial databases; Telephony;
Conference_Titel :
Global Telecommunications Conference and Exhibition 'Communications Technology for the 1990s and Beyond' (GLOBECOM), 1989. IEEE
Conference_Location :
Dallas, TX
DOI :
10.1109/GLOCOM.1989.64085
