Advanced Search
CS Search Google Search
Subscribers, please login

Published Articles >> Table of Contents >> Abstract

16th Annual Computer Security Applications Conference (ACSAC'00)   p. 298
Using attribute certificates with mobile policies in electronic commerce applications
V. Doshi, MITRE Corp., McLean, VA, USA
A. Fayad, MITRE Corp., McLean, VA, USA
S. Jajodia, MITRE Corp., McLean, VA, USA
R. MacLean, MITRE Corp., McLean, VA, USA
Full Article Text: Download PDF of full textBuy this articleGet full text from IEEE Xplore

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898884
Send link to a friend

Abstract
Many electronic commerce applications, including those developed for business-to-consumer (B2C) and business-to-business (B2B) uses, require operations in computing environments that are truly distributed. That is, users can request data access from multiple locations within a distributed computing system. To complicate this type of operation, however, data can be distributed and represented in multiple forms. As a result, system administrators are encountering increasing difficulty in developing and managing application-specific policies for users and data. A multi-tier (N-tier) architecture can provide a powerful solution for meeting the diverse needs of the electronic commerce applications. However, a drawback to multi-tier architectures is that they require that a user's credentials and the policy-to-data mapping context must be available in the middle tier of the system architecture. This paper addresses the management of users and data by presenting a framework for combining attribute certificates with a mobile policy for effective application-specific control specification and administration in a distributed computing environment. Attribute certificates provide mobility to credentials and also provide fine-grained information about security principles. A mobile policy allows application-specific policies to move along with the data to other elements of the distributed computing system. We propose a high-level definition language to specify policies that are application-specific and mobile, and present an algorithm for enforcing attribute-based mobile policies.
Additional Information
Index Terms- electronic commerce; mobile computing; certification; message authentication; specification languages; attribute certificates; mobile policies; electronic commerce applications; business-to-consumer applications; business-to-business applications; distributed computing environments; data access requests; distributed data representation; system administration; application-specific policies; multi-tier architecture; user credentials; policy-to-data mapping context; middle tier; user management; data management; application-specific control specification; fine-grained information; security principles; high-level definition language

Citation:  V. Doshi, A. Fayad, S. Jajodia, R. MacLean, "Using attribute certificates with mobile policies in electronic commerce applications," acsac, p. 298,  16th Annual Computer Security Applications Conference (ACSAC'00),  2000

Similar Articles

Abstract Contents
Abstract
Index Terms
Citation

Download Citation
Ascii Text
BibTex
RefWorks
Procite/RefMan/Endnote




Free access to

  • Abstracts
  • Selected PDFs

Electronic subscribers login to:

  • Access HTML/PDFs of full text articles

Subscription information

Get a Web account

PDFs require Adobe Acrobat Reader.

Peer Review Notice

Give us Feedback