• DocumentCode
    1399217
  • Title

    Domain-based access control for distributed computing systems

  • Author

    Robinson, D.C. ; Sloman, M.S.

  • Author_Institution
    GEC Res. Ltd., Chelmsford, UK
  • Volume
    3
  • Issue
    5
  • fYear
    1988
  • fDate
    9/1/1988 12:00:00 AM
  • Firstpage
    161
  • Lastpage
    170
  • Abstract
    Existing management tools and approaches are not appropriate to the size and multiple-organisation nature of very large distributed computing systems (VLDCSs). The paper describes a new approach to the management of VLDCSs based on a domain model. While this model is applicable to most aspects of management, the paper describes an implementation of the domain model for management of access rights. Domains provide a flexible means for specifying access control policies, which reflect organisational structure, and permit secure inter-organisation interactions, while giving users transparent access to resources. The paper describes an implementation of domains in terms of capability-based access rights, which meets the flexibility and security requirements for managing VLDCSs. Security is enhanced by physically preventing programs from directly accessing capabilities
  • Keywords
    computer networks; distributed processing; network operating systems; security of data; access control; access rights; capability-based access rights; computer networks; distributed computing systems; domain model; inter-organisation interactions; organisational structure; security requirements; transparent access;
  • fLanguage
    English
  • Journal_Title
    Software Engineering Journal
  • Publisher
    iet
  • ISSN
    0268-6961
  • Type

    jour

  • Filename
    6904
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1399217