Title :
Policy-Driven Distributed Authorization: Status and Prospects
Author :
Winslett, Marianne
Author_Institution :
Univ. of Illinois at Urbana-Champaign, Urbana
Abstract :
Policies show great potential as a way to control the behavior of complex computer systems. In the case of authorization decisions in large distributed systems, policies offer the potential to abstract away from the details of who is allowed to access which services, under which conditions. This layer of abstraction is both a challenge and an opportunity: policy-driven distributed authorization systems may be more manageable, scalable, available, and secure than previous approaches---or they may be just the opposite. In the talk that accompanies this paper paper, we survey the status of the field and its near- term prospects, from both a theoretical and a practical perspective, and point out the major barriers to the adoption of policy-driven authorization systems in industry.
Keywords :
authorisation; distributed processing; complex computer systems; policy-driven distributed authorization systems; Authorization; Computer science; Control systems; Distributed computing; Hospitals; Humans; Legislation; Middleware; Open systems; Security;
Conference_Titel :
Policies for Distributed Systems and Networks, 2007. POLICY '07. Eighth IEEE International Workshop on
Conference_Location :
Bologna
Print_ISBN :
0-7695-2767-1
DOI :
10.1109/POLICY.2007.35
