ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Role-based access control for collaborative enterprise in peer-to-peer computing environments
Full text PdfPdf (325 KB)
Source Symposium on Access Control Models and Technologies archive
Proceedings of the eighth ACM symposium on Access control models and technologies table of contents
Como, Italy
SESSION: RBAC for Collaborative Environments table of contents
Pages: 93 - 99  
Year of Publication: 2003
ISBN:1-58113-681-1
Authors
Joon S. Park  Syracuse University, Syracuse, NY
Junseok Hwang  Syracuse University, Syracuse, NY
Sponsors
ACM: Association for Computing Machinery
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 11,   Downloads (12 Months): 117,   Citation Count: 8
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/775412.775424
What is a DOI?

ABSTRACT

In Peer-to-Peer (P2P) computing environments, each participant (peer) acts as both client and content provider. This satisfies the requirement that resources should be increasingly made available by being published to other users from a user's machine. Compared with services performed by the client-server model, P2P-based services have several advantages. However, wide-scale application of P2P computing is constrained by limitations associated with the especially sophisticated control mechanisms needed between peers. To overcome these limitations, we introduce a controlled P2P computing architecture by extending the concept of Web services to the peer-to-peer level through a generic middleware. Specifically, in this paper we tailor our approach to support RBAC. Although our approach supports both brokered and purist P2P models, all of the policy decisions can be made on the peer side, because policy information is transferred from the policy servers to the corresponding peers through metadata that peers can understand. Each peer makes the access control decision based on the enterprise, the community, and the peer policies without asking other components. This approach supports RBAC services for collaborative enterprise in P2P computing environments, not only within one community but also within inter-communities. Furthermore, it also supports peers' autonomous decisions without causing policy conflicts. The broad dissemination of our approach would enable P2P technology to be applicable to more reliable and efficient services, providing controlled communications between peers.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
K. Ballinger, P. Brittenham, A. Malhotra, W. Nagy, S. Pharies. Web Services Inspection Language (WS-Inspection) 1.0, October 2001.
 
2
Blubster, http://www.blubster.com/.
 
3
T. Bay, J. Paoli, and C. Sperberg-McQueen. Extensible Markup Language (XML) 1.0, W3C Recommendation. October 2000; http://www.w3.org/TR/REC-xml.
 
4
Christensen, E., Curbera, F., Meredith, G. and Weerawarana., S. Web Services Description Language (WSDL) 1.1. W3C, Note 15, 2001, www.w3.org/TR/wdsl.
 
5
Ian Clarke , Scott G. Miller , Theodore W. Hong , Oskar Sandberg , Brandon Wiley, Protecting Free Expression Online with Freenet, IEEE Internet Computing, v.6 n.1, p.40-49, January 2002  [doi>10.1109/4236.978368]
 
6
David Clark, Face-to-Face with Peer-to-Peer Networking, Computer, v.34 n.1, p.18-21, January 2001  [doi>10.1109/2.970548]
 
7
Dieter Fensel, Ontologies: A Silver Bullet for Knowledge Management and Electronic Commerce, Springer-Verlag New York, Inc., Secaucus, NJ, 2003
 
8
Foster I., Kesselman, C., Nick, J. and Tuecke, S. (2002). The Physiology of the Grid: An Open Grid Services Architecture for Distributed Systems Integration. 4th Global Grid Forum, Toronto, Canada.
 
9
FeeNet, http://www.freenet.com.
 
10
Gnutella, http://www. gnutella.com.
 
11
Groove Network, http://www.groove.net/.
 
12
Junseok Hwang, Praveen Aravamudham, Elizabeth Liddy, Jeffery Stanton, Ian MacInnes. IRTL (Information Resource Transaction Layer) Middleware Design for P2P and Open GRID Services. 36th HICSS, Big Island of Hawaii, USA.
 
13
Project JXTA, http://www.jxta.org/.
 
14
Kazaa, http://www.kazaa.com.
 
15
Limewire, http://www.Limewire.com/.
 
16
O. Lassila and R. Swick. Resource Description Framework (RDF) Model and Syntax Specification. W3C Recommendation, February 1999; http://www.w3.org/TR/REC-rdf-syntax/.
 
17
Morpheus, http://www.Morpheus.com/.
 
18
Napster, http://www.napster.com.
 
19
Proceedings of the First International Conference on Peer-to-Peer Computing (P2P'01). Lingküping, Sweden, August 27--29, 2001.
 
20
Proceedings of the Second International Conference on Peer-to-Peer Computing (P2P'02). Lingküping, Sweden, September 05--07, 2002.
 
21
Platform for Internet Content Selection (PICS), http://www.w3.org/PICS/.
 
22
Joon S. Park , Myong H. Kang , Judith N. Froscher, A secure workflow system for dynamic collaboration, Proceedings of the 16th international conference on Information security: Trusted information: the new decade challenge, June 11-13, 2001, Paris, France
23
Joon S. Park , Ravi Sandhu , Gail-Joon Ahn, Role-based access control on the web, ACM Transactions on Information and System Security (TISSEC), v.4 n.1, p.37-71, Feb. 2001  [doi>10.1145/383775.383777]
 
24
Publius, http://www.publius.com.
 
25
Matei Ripeanu , Adriana Iamnitchi , Ian Foster, Mapping the Gnutella Network, IEEE Internet Computing, v.6 n.1, p.50-57, January 2002  [doi>10.1109/4236.978369]
 
26
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845]
 
27
Clay Shirky, Web Services and Context Horizons, Computer, v.35 n.9, p.98-100, September 2002  [doi>10.1109/MC.2002.1033037]
 
28
SOAP: W3C Simple Object Access Protocol Version 1.1, May 8, 2000 http://www.w3.org/TR/SOAP/
 
29
Universal Description, Discovery and Integration, http://www.uddi.org/.
 
30
Web Services Architecture, http://www.w3.org/TR/2002/WD-ws-arch-20021114.

CITED BY  8
Shih-Chien Chou , An-Feng Liu , Chien-Jung Wu, Preventing information leakage within workflows that execute among competing organizations, Journal of Systems and Software, v.75 n.1-2, p.109-123, 15 February 2005
Shih-Chien Chou , Wei-Chuan Hsu , Wei-Kuang Lo, DPE/PAC: decentralized process engine with product access control, Journal of Systems and Software, v.76 n.3, p.207-219, June 2005
Tsung-Yi Chen , Yuh-Min Chen, Advanced multi-phase trust evaluation model for collaboration between coworkers in dynamic virtual project teams, Expert Systems with Applications: An International Journal, v.36 n.8, p.11172-11185, October, 2009
Tsung-Yi Chen , Yuh-Min Chen , Chin-Bin Wang , Hui-Chuan Chu , Huimei Yang, Secure resource sharing on cross-organization collaboration using a novel trust method, Robotics and Computer-Integrated Manufacturing, v.23 n.4, p.421-435, August, 2007
Xukai Zou , Yogesh Karandikar , Elisa Bertino, A dynamic key management solution to access hierarchy, International Journal of Network Management, v.17 n.6, p.437-450, November 2007
Tsung-Yi Chen , Yuh-Min Chen , Hui-Chuan Chu, Developing a trust evaluation method between co-workers in virtual project team for enabling resource sharing and collaboration, Computers in Industry, v.59 n.6, p.565-579, August, 2008
Luciano Paschoal Gaspary , Marinho P. Barcellos , André Detsch , Rodolfo S. Antunes, Flexible security in peer-to-peer applications: Enabling new opportunities beyond file sharing, Computer Networks: The International Journal of Computer and Telecommunications Networking, v.51 n.17, p.4797-4815, December, 2007
Tsung-Yi Chen , Yuh-Min Chen , Chin-Bin Wang , Hui-Chuan Chu, Flexible authorisation in dynamic e-business environments using an organisation structure-based access control model, International Journal of Computer Integrated Manufacturing, v.22 n.3, p.225-244, March 2009

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Information flow controls


General Terms:
Management, Security


Keywords:
peer-to-peer computing, role-based access control, security

Collaborative Colleagues:
Joon S. Park: colleagues
Junseok Hwang: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player