|
 ABSTRACT
Efficient and effective web gateways or proxy servers are important to control the access privileges of users and protect private networks that are connected to the Internet, thus providing a productive and safe web environment. Access control in the form of complex access rules based on users or user sets (groups) has been studied extensively. The objective of this work is to provide role-based (RB) security for web gateways utilizing Role-Based Access Control (RBAC). RB security reduces the administrative burden, provides fine grained access control and supports various constraints such as context-aware and temporal seamlessly.In this paper we elaborate on the problems, issues that need to be addressed, and our approach for providing RB security for web gateways by leveraging the flexibility and expressiveness of RBAC. Our approach enables the proxy server to act smarter, rather than just allow or deny access based on access rules, meanwhile preserving the principle of least privileges.
REFERENCES
Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.
| |
1
|
Join Bill Rose and Joe Lenski, "Internet and Multimedia 12: The Value of Internet Broadcast Advertising," Arbiton IBS and Edison Media Research, 2004. {Online}: http://www.edisonresearch.com/Internet 12 Web cast.htm
|
| |
2
|
"Surfing at Work: Corporate Networks Are Paying the Price," SurfControl, 2004. {Online}: http://www.surfcontrol.com/resources/whitepapers/
|
| |
3
|
Brian E. Burke, "Content Security: The Business Value of Blocking Unwanted Content," IDC, 2003. {Online}: http://www.idc.com
|
| |
4
|
"Surfing at Work: Ethics in Computing," Dept of CSC, North Carolina State University, Raleigh, NC. {Online}: http://ethics.csc.ncsu.edu/social/workplace/surfing/
|
| |
5
|
"Web Filtering Products Feature Comparison," SurfControl, 2004. {Online}: http://www.surfcontrol.com/products/web/features.aspx
|
| |
6
|
"Proxy SGTM: Advanced Web Proxy," Blue Coat Systems. {Online}: http://www.bluecoat.com/
|
| |
7
|
"Websense Enterprise," Websense, 2004. {Online}: http://www.websense.com/products/about/Enterprise/
|
| |
8
|
"Microsoft ISA Server," Microsoft, 2004. {Online}: http://www.microsoft.com/isaserver/techinfo/productdoc/2004.asp
|
| |
9
|
"Border Manager," Novell, Inc., 2004. {Online}: http://www.novell.com/products/bordermanager/
|
| |
10
|
"SurfControl Web Filter," SurfControl, 2004. {Online}: http://www.surfcontrol.com/products/web/
|
| |
11
|
D. F. Ferraiolo, J. A. Cugini, and D. R. Kuhn, "Role-Based Access Control: Features and Motivations," in Proc. of CSAC, 1995.
|
| |
12
|
|
| |
13
|
RBAC Standard, ANSI INCITS 359-2004, 2004.
|
| |
14
|
The Economic Impact of RBAC, RTI Project Number: 07007.012, National Institute of Standards and Technology, 2002.
|
 |
15
|
|
| |
16
|
|
| |
17
|
|
| |
18
|
|
| |
19
|
R. Adaikkalavan et al., "Information Security: Using A Novel Event-Based Approach," in Proc. of IKE, USA, June 2004.
|
| |
20
|
R. Adaikkalavan and S. Chakravarthy, "ED-RBAC: A Flexible Event-Based Framework for Enforcing RBAC and its Extensions," Dept. of CSE, The University of Texas at Arlington, Technical Report. CSE-2004-1, 2004.
|
| |
21
|
C. Adams and S. Lloyd, Understanding PKI. Addison-Wesley, 2003.
|
|
Adobe Acrobat
QuickTime
Windows Media Player
Real Player
Pdf