Access control in wide-area networks

Author

Hiltunen, Matti A. ; Schlichting, Richard D.

Author_Institution

Dept. of Comput. Sci., Arizona Univ., Tucson, AZ, USA

fYear

1997

fDate

27-30 May 1997

Firstpage

330

Lastpage

337

Abstract

Access control involves maintaining information about which users can access system resources and ensuring that access is restricted to authorized users. In wide-area networks such as the Internet, implementing access control is difficult, since resources may be replicated, the task of managing access rights may be distributed among multiple sites, and events such as host failures, host recoveries, and network partitions must be dealt with. This paper explores the problem of access control in such an environment, and in particular the inherent tradeoff between security, availability, and performance. Techniques for dealing with access control in the presence of partitions are presented and used as the basis for an algorithm that allows application control over these tradeoffs

Keywords

authorisation; computer network reliability; performance evaluation; wide area networks; Internet; access control; access rights; application control; authorized users; availability; host failures; host recoveries; multiple sites; network partitions; performance; replicated resources; security; system resources; wide area networks; Access control; Authentication; Availability; Control systems; Databases; File systems; IP networks; Intelligent networks; Partitioning algorithms; Permission;

fLanguage

English

Publisher

ieee

Conference_Titel

Distributed Computing Systems, 1997., Proceedings of the 17th International Conference on

Conference_Location

Baltimore, MD

ISSN

1063-6927

Print_ISBN

0-8186-7813-5

Type

conf

DOI

10.1109/ICDCS.1997.598064

Filename

598064