Closed User Groups in Internet Service Centres

The paper presents a model for end-user directed access control to services in Internet service centres that, beside the classical Internet services (e.g., e-mail), offer a multitude of new services (e.g., on-line conferencing and auctioning) over the Internet. The model is based on the concept of closed user groups. The main idea is that at creation time each service instance and its components are assigned to a user group previously formed by a subset of the end-users, and access control is performed for access attempts through checking the group assignment of the accessed resource against the group memberships of the authenticated accessing end-user. Access control is directed by the end-users through the management of group memberships. We describe the concept of closed user groups, the management of group memberships, the enforcement of access control, and the realisation with off-the-shelf software for a middleware based service environment, which is haracterised by the use of CORBA, Java, and WWW technology.


Published in:
Distributed Applications and Interoperable Systems II, 439-452
Presented at:
2nd IFIP International WorkingConference on Distributed Applications and Interoperable Systems (DAIS'99), Helsinki, June 28–July 1, 1999
Year:
1999
Publisher:
Springer
ISBN:
978-1-4757-5008-9
Keywords:
Laboratories:




 Record created 2004-08-31, last modified 2018-10-01

n/a:
Download fulltext
PS

Rate this document:

Rate this document:
1
2
3
 
(Not yet reviewed)