Advanced Search
CS Search Google Search
Subscribers, please login

Published Articles >> Table of Contents >> Abstract

Publication Home Page
March/April 2003 (Vol. 7, No. 2)   pp. 62-69
Role-Based Access Control With X.509 Attribute Certificates
David W. Chadwick, University of Salford
Alexander Otenko, University of Salford
Edward Ball, University of Salford
Full Article Text: View linked HTML of full textDownload PDF of full textBuy this articleGet full text from IEEE Xplore

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MIC.2003.1189190
Send link to a friend

Abstract
The Permis privilege management infrastructure is a role-based access control system that uses XML-based local policies and a Java API.
References
[1] ITU-T Recommendation X.509, The Directory: Authentication Framework, Int'l Telecomm. Union, Geneva, 2000; ISO/IEC 9594-8.
[2] M. Blaze et al., "The Keynote Trust-Management System Version 2," Internet Eng. Task Force RFC 2704, Sept. 1999; www.ietf.org/rfcrfc2704.txt.
[3] R.S. Sandhu et al., "Role-Based Access Control Models," Computer, Feb. 1996, pp. 38-47.
[4] S. Knight and C. Grandy,"Scalability Issues in PMI Delegation," Pre-Proc. 1st Ann. PKI Workshop, 2002, pp. 67-77; also available atwww.cs.dartmouth.edu/~pki02/Knightpaper.pdf .
[5] S. Farrell and R. Housley,"An Internet Attribute Certificate for Authorization," Internet draft, Aug. 2000; work in progress.
[6] J.S. Park, R. Sandhu, and G.J. Ahn, "Role-Based Access Control on the Web," ACM Trans. Information and System Security, vol. 4, no. 1, Feb. 2001, pp. 37-71.
[7] N. Damianou, N. Dulay, E. Lupu, and E. Sloman, “The Ponder Policy Specification Language,” Policies for Distributed Systems and Networks, pp. 18-38, 2001.
[8] E. Bertino, S. Castano,, and E. Farrari,"On Specifying Security Policies for Web Documents with an XML-based Language," Proc. 6th ACM Symp. Access Control Models and Technologies, ACM Press, 2001, pp. 41-52.
[9] M.R. Thompson et al., "Authorization Policy in a PKI Environment," Proc. 1st Ann. PKI Workshop, Apr. 2002, pp. 137-149; also available atwww.cs.dartmouth.edu/~pki02/Thompsonpaper.pdf .
[10] Extensible Access Control Markup Language (XACML), version 1.0, Organization for the Advancement of Structured Information Standards, Dec. 2002; www.oasis-open.org/committeesxacml/.
[11] D.W. Chadwick and A. Otenko,"RBAC Policies in XML for X.509-based Privilege Management," Proc. IFIP 17th Int'l Conf. Information Security (SEC 2002), Kluwer Academic, 2002, pp.39-53.
[12] ITU-T Recommendation X.812, Security Frameworks for Open Systems: Access Control Framework, Int'l Telecomm. Union, Geneva, 1995; ISO/IEC 10181-3, 1996.
[13] Authorization (AZN) API, the Open Group, Jan. 2000; www.opengroup.org/publications/catalogc908.htm .
[14] T. Ryutov, C. Neuman,, and L. Pearlman., "Generic Authorization and Access Control Application Program Interface C-Bindings," Internet draft, Nov. 2000, work in progress; see alsowww.isi.edu/gost/infogaaapi/.
[15] T. Ryutov and C. Neuman,"Generic Authorization and Access Control Application Program Interface: C-Bindings," Internet draft, Nov. 2000; work in progress.
Additional Information

Citation:  David W. Chadwick, Alexander Otenko, Edward Ball, "Role-Based Access Control With X.509 Attribute Certificates," IEEE Internet Computing, vol. 07,  no. 2,  pp. 62-69,  Mar/Apr,  2003

RSS Feed

Similar Articles

Abstract Contents
Abstract
References
Citation

Download Citation
Ascii Text
BibTex
RefWorks
Procite/RefMan/Endnote




Free access to

  • Abstracts
  • Selected PDFs

Electronic subscribers login to:

  • Access HTML/PDFs of full text articles

Subscription information

Get a Web account

Peer Review Notice

Give us Feedback