Access Control Infrastructure for Digital Objects

TitleAccess Control Infrastructure for Digital Objects
Publication TypeConference Paper
Year of Publication2002
AuthorsJ. Lopez, A. Mana, E. Pimentel, J. M. Troya, and M. I. Yague
Conference NameInternational Conference on Information and Communications Security (ICICS’02)
Series TitleLNCS
Date PublishedDecember
Conference LocationSingapore

Distributed systems usually contain objects with heterogeneous security requirements that pose important challenges on the underlying security mechanisms and especially in access control systems. Access control in distributed systems often relies on centralized security administration. Existing solutions for distributed access control do not provide the flexibility and manageability required. This paper presents the XML-based Secure Content Distribution (XSCD) infrastructure is based on the production of self-protected software objects that convey contents (software or data) and can be distributed without further security measures because they embed the access control enforcement mechanism. It also provides means for integrating Privilege Management Infrastructures (PMIs). Semantic information is used in the dynamic instantiation and semantic validation of policies. XSCD is scalable, facilitates the administration of the access control system, guarantees the secure distribution of the contents, enables semantic integration and interoperability of heterogeneous sources, solves the “originator retained control” issue and allows activities (such as payment) to be bound to the access to objects.  

Citation KeyJavierLopez2002j
Paper File: