Using NFS to implement role-based access control

Author

Gustafsson, Mats ; Deligny, Benoit ; Shahmehri, Nahid

Author_Institution

Dept. of Comput. & Inf. Sci., Linkoping Univ., Sweden

fYear

1997

fDate

18-20 Jun 1997

Firstpage

299

Lastpage

304

Abstract

Presents a design for a modified NFS (Network File System) server that, through simple additions, makes it possible to place an exported file system under role-based access control (RBAC). RBAC is an efficient way for managing access control information. However, most access control systems today do not support RBAC. As a solution to this problem, the modified NFS server we present in this paper makes it possible to introduce RBAC into existing environments in a transparent manner. We have implemented our design as an extension to the Linux User Space NFS Server running on a Linux 2.0 system. Our implementation demonstrates the feasibility of our main idea. However, tests show that performance of our server needs to be improved, something we believe can be achieved through code optimizations

Keywords

authorisation; file servers; performance evaluation; Linux 2.0 system; Linux User Space NFS Server; Network File System; access control information management; code optimization; distributed systems; exported file system; legacy systems; performance; role-based access control; Access control; Data security; Databases; File servers; File systems; Information science; Information security; Linux; Network servers; Sun;

fLanguage

English

Publisher

ieee

Conference_Titel

Enabling Technologies: Infrastructure for Collaborative Enterprises, 1997. Proceedings., Sixth IEEE Workshops on

Conference_Location

Cambridge, MA

Print_ISBN

0-8186-7967-0

Type

conf

DOI

10.1109/ENABL.1997.630829

Filename

630829