Models to Solve the Duplication Problem in Treaty Systems

Author

Yining Zhao ; Wood, Alan

Author_Institution

Dept. of Comput. Sci., Univ. of York, York, UK

fYear

2012

fDate

14-16 Dec. 2012

Firstpage

376

Lastpage

381

Abstract

Capabilities are a more scalable and adaptive access control approach compared with the conventional approaches such as ACLs, due to their being held and managed by users or agents in systems, but not the middleware. This feature makes capabilities more suitable in distributed environments that have dynamic populations. Treaties have been proposed to enhance the capability approach by introducing sequences of actions, such that treaties can capture characteristics of behaviours, and provide finer control over accesses. However there is a new problem brought by the behaviour modeling of treaties which is called duplication problem, which concerns preventing users from gaining unauthorised behaviour by duplicating treaties. In this paper we discuss this problem and propose three models of treaty systems that aim to solve the duplication problem.

Keywords

authorisation; action sequences; behaviour characteristics; capability approach enhancement; distributed environments; duplication problem; dynamic populations; scalable-adaptive access control approach; treaty behaviour modeling; treaty systems; unauthorised behaviour; Access control; Computational modeling; Computer science; Distributed computing; Kernel; Logic gates; Memory management; Access Control; Behaviour Control; Distributed Computing; Duplication Problem; Treaties;

fLanguage

English

Publisher

ieee

Conference_Titel

Parallel and Distributed Computing, Applications and Technologies (PDCAT), 2012 13th International Conference on

Conference_Location

Beijing

Print_ISBN

978-0-7695-4879-1

Type

conf

DOI

10.1109/PDCAT.2012.96

Filename

6589308