Loading...
Please wait, while we are loading the content...
Similar Documents
Teias de federações: uma abordagem baseada em cadeias de confiança para autenticação , autorização e navegação em sistemas de larga escala
| Content Provider | Semantic Scholar |
|---|---|
| Author | Santin, Altair Olivo |
| Copyright Year | 2004 |
| Abstract | The traditional authentication and authorization co ntr l methods are name-oriented, i.e., each entity is represented by a name that corresponds to a unique identifier in a system. They are, usually based on a centralized trust authority. This approach is barely adequate to fulfill all the requ irements associated to a large-scale system, such as Internet. Recently, a key-oriented model has been proposed as an alternative for building secure distributed systems . This model can be considered more scalable and flexible than the traditional ones, be cause a public key infrastructure is used without a central trust authority. The authority di stribution is implemented by successive permission delegations, according to a trust chain, where his/her public key identifies the subject (beneficiary). The difficulty in using the chain approach is to determine (search) the authorization path corresponding to the success iv delegations that connect a client to a server. The techniques proposed to determine the de legation chain, until the moment, don't suggest alternatives when the search for a path fai ls. This work proposes a new strategy to build the delegation chains. The approach introduce s a new entity called federation, which represents similar interests of a group of principa ls. The main function of the federation is to help in the location of keys, for solving names, and authorization certificates, for building the delegation chains. To improve scalabil ity, federations are grouped in "federation webs", distributed along the global net work. A heuristic-based algorithm, permitting the clients to navigate across the web f ederation for searching the certificates, is also presented. A prototype with the main concepts of our strategy was implemented in CORBA. In order to evaluate our proposal, the perfo rmance result of this prototype in a distributed scenario is also presented. |
| File Format | PDF HTM / HTML |
| Alternate Webpage(s) | https://core.ac.uk/download/pdf/30367694.pdf |
| Language | English |
| Access Restriction | Open |
| Content Type | Text |
| Resource Type | Article |
