Title :
Access control in wide-area networks
Author :
Hiltunen, Matti A. ; Schlichting, Richard D.
Author_Institution :
Dept. of Comput. Sci., Arizona Univ., Tucson, AZ, USA
Abstract :
Access control involves maintaining information about which users can access system resources and ensuring that access is restricted to authorized users. In wide-area networks such as the Internet, implementing access control is difficult, since resources may be replicated, the task of managing access rights may be distributed among multiple sites, and events such as host failures, host recoveries, and network partitions must be dealt with. This paper explores the problem of access control in such an environment, and in particular the inherent tradeoff between security, availability, and performance. Techniques for dealing with access control in the presence of partitions are presented and used as the basis for an algorithm that allows application control over these tradeoffs
Keywords :
authorisation; computer network reliability; performance evaluation; wide area networks; Internet; access control; access rights; application control; authorized users; availability; host failures; host recoveries; multiple sites; network partitions; performance; replicated resources; security; system resources; wide area networks; Access control; Authentication; Availability; Control systems; Databases; File systems; IP networks; Intelligent networks; Partitioning algorithms; Permission;
Conference_Titel :
Distributed Computing Systems, 1997., Proceedings of the 17th International Conference on
Conference_Location :
Baltimore, MD
Print_ISBN :
0-8186-7813-5
DOI :
10.1109/ICDCS.1997.598064
