Title :
Models to Solve the Duplication Problem in Treaty Systems
Author :
Yining Zhao ; Wood, Alan
Author_Institution :
Dept. of Comput. Sci., Univ. of York, York, UK
Abstract :
Capabilities are a more scalable and adaptive access control approach compared with the conventional approaches such as ACLs, due to their being held and managed by users or agents in systems, but not the middleware. This feature makes capabilities more suitable in distributed environments that have dynamic populations. Treaties have been proposed to enhance the capability approach by introducing sequences of actions, such that treaties can capture characteristics of behaviours, and provide finer control over accesses. However there is a new problem brought by the behaviour modeling of treaties which is called duplication problem, which concerns preventing users from gaining unauthorised behaviour by duplicating treaties. In this paper we discuss this problem and propose three models of treaty systems that aim to solve the duplication problem.
Keywords :
authorisation; action sequences; behaviour characteristics; capability approach enhancement; distributed environments; duplication problem; dynamic populations; scalable-adaptive access control approach; treaty behaviour modeling; treaty systems; unauthorised behaviour; Access control; Computational modeling; Computer science; Distributed computing; Kernel; Logic gates; Memory management; Access Control; Behaviour Control; Distributed Computing; Duplication Problem; Treaties;
Conference_Titel :
Parallel and Distributed Computing, Applications and Technologies (PDCAT), 2012 13th International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-0-7695-4879-1
DOI :
10.1109/PDCAT.2012.96
