Title :
Scalable Access Control ForWeb Services
Author :
Swamynathan, G. ; Close, Timothy J. ; Banerjee, Sean ; McGeer, Rick ; Ben Zhao ; Almeroth, Kevin
Author_Institution :
Dept. of Comput. Sci., California Univ., Santa Barbara, CA
Abstract :
Controlling access to a large distributed service is a potentially error prone process that may negatively impact request throughput and usability. Our Authorization-Based Access Control (or ABAC) URL rewriter solves this problem by providing locally verifiable authorizations and delegation tracking compatible with common web tools. Our access control mechanism is reusable, distributed and meets the scaling requirements of large distributed services. We demonstrate the successful operation of our proposed mechanism on HP´s real-time network monitoring and measurement web service, S3.
Keywords :
Web services; authorisation; ABAC; HP real-time network monitoring; Web services; authorization-based access control; delegation tracking; large distributed services; locally verifiable authorizations; scalable access control; Access control; Authorization; Computer errors; Computer science; Error correction; Large-scale systems; Monitoring; Network servers; Uniform resource locators; Web services;
Conference_Titel :
Creating, Connecting and Collaborating through Computing, 2007. C5 '07. The Fifth International Conference on
Conference_Location :
Kyoto
Print_ISBN :
0-7695-2806-6
