Change search
ReferencesLink to record
Permanent link

Direct link
Conflict Detection and Lifecycle Management for Access Control in Publish/Subscribe Systems
Karlstad University, Faculty of Health, Science and Technology (starting 2013), Department of Mathematics and Computer Science. (Privacy and Security Group)ORCID iD: 0000-0002-9980-3473
Technische Universität Darmstadt.
2011 (English)In: High-Assurance Systems Engineering (HASE), 2011 IEEE 13th International Symposium on, IEEE Press, 2011, 104-111 p.Conference paper (Refereed)
Abstract [en]

In today's collaborative business environment there is a need to share information across organizational boundaries. Publish/Subscribe systems are ideal for such scenarios as they allow real-time information to be shared in an asynchronous fashion. In this work, we focus on the access control aspect. While access control in general for publish/subscribe systems has been studied before, their usage in a multi-organizational scenario leads to some novel challenges. Here a publisher might wish to enforce restrictions w.r.t. not only subscribers, but also other publishers publishing certain event types due to competitive or regulatory reasons. With different publishers and subscribers having their own preferences and restrictions, conflicts are evident w.r.t. both publishing and subscribing to specific event types. Given this, the first contribution of this work is to provide efficient conflict detection and resolution algorithms. The other important (and often ignored) aspect of large scale and evolving systems is that of efficiently handling modifications to existing policies, e.g. a rule may become invalid after a certain period of time. Our approach in handling such modifications is two-fold: (i) to maintain consistency and (ii) to automatically detect and enforce rules which could not have been enforced earlier due to conflicts. The second contribution of our work is thus to provide lifecycle management for access control rules, which is tightly coupled with the conflict detection and resolution algorithms.

Place, publisher, year, edition, pages
IEEE Press, 2011. 104-111 p.
National Category
Computer Science
Research subject
Computer Science
Identifiers
URN: urn:nbn:se:kau:diva-27801DOI: 10.1109/HASE.2011.50ISBN: 978-1-4673-0107-7OAI: oai:DiVA.org:kau-27801DiVA: diva2:628229
Conference
13th IEEE International High Assurance Systems Engineering Symposium (HASE 2011), Boca Raton, FL, 10-12 Nov. 2011
Available from: 2013-06-13 Created: 2013-06-13 Last updated: 2016-10-15Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full text

Search in DiVA

By author/editor
Martucci, Leonardo
By organisation
Department of Mathematics and Computer Science
Computer Science

Search outside of DiVA

GoogleGoogle Scholar

Altmetric score

Total: 13 hits
ReferencesLink to record
Permanent link

Direct link