Secure Hardware-based Distributed Authorisation Underpinning a Web Service Framework
作者: Marco Casassa Mont , Joe Pato , Adrian Baldwin
DOI:
关键词:
摘要: This paper presents a distributed authorisation model suitable for use in web service framework where multiple parties are involved performing particular transaction. The uses third party that checks users or services’ credentials against set of policies. A traditional provision does not scale well such transactions. proposed hardware security appliance to deliver the most appropriate site supports multi-party session so policies can be checked and built as part composition process.
参考文章(15)
Naomaru Itoi, Secure coprocessor integration with Kerberos V5 ,(1999)
Yolanta Beres, Marco Casassa Mont, Adrian Baldwin, Simon Shiu, Trust Services: A Trust Infrastructure for E-Commerce ,(2001)
Adrian Baldwin, Simon Shiu, Hardware Security Appliances for Trust Lecture Notes in Computer Science. pp. 46- 58 ,(2003) , 10.1007/3-540-44875-6_4
Naresh Apte, Toral Mehta, Web Services: A Java Developer's Guide Using e-Speak ,(2001)
Raymond Kammer, William M. Daley, Cheryl Shavers, Security Requirements for Cryptographic Modules ,(1999)
Sean W. Smith, Elaine R. Palmer, Steve Weingart, Using a High-Performance, Programmable Secure Coprocessor financial cryptography. pp. 73- 89 ,(1998) , 10.1007/BFB0055474
Jeffrey Richter, Applied Microsoft® .NET Framework Programming ,(2002)
Barbara Gengler, Trusted Computing Platform Alliance Network Security. ,vol. 2001, pp. 6- ,(2001) , 10.1016/S1353-4858(01)00312-9
S. Farrell, R. Housley, An Internet Attribute Certificate Profile for Authorization RFC. ,vol. 3281, pp. 1- 40 ,(2002)
T. Ryutov, C. Neuman, Representation and evaluation of security policies for distributed system services darpa information survivability conference and exposition. ,vol. 2, pp. 172- 183 ,(2000) , 10.1109/DISCEX.2000.821518