Abstract
It is often necessary for organizations to come together in a coalition to share services, without prior planning, to accomplish certain tasks. The dynamic coalition-based access control (DCBAC) model facilitates the formation of dynamic coalitions through the use of a registry service, where available services can be advertised by potential coalition members. The central component of the DCBAC model is the distributed coalition service registry (DCSR). Depending upon the levels of service needed by the service providers and requesters, DCSR provides different functionality. We define three levels of DCSR services: (i) Registry Service (ii)Authenticator Service, and (iii) Query Service. For the last service, DCSR answers a specific question directly by using the information resources of service providers, when the requester has needed credentials. No direct interactions are needed between the coalition members in this level of service. In this paper, we describe our service-oriented approach to DCSR design and show the flexibility that it offers. The design features are tested through a prototype DCBAC system built using the .Net framework.
The work of Atluri and Warner is supported in part by the National Science Foundation under grant IIS-0306838.
Chapter PDF
Similar content being viewed by others
References
Bharadwaj, V., Baras, J.: A framework for automated negotiation of access control policies. In: Proceedings of DISCEX III (2003)
Birman, K.: Reliable distributed systems. Springer, Heidelberg (2005)
Cohen, E., Winsborough, W., Thomas, R., Shands, D.: Models for coalition-based access control (cbac). In: SACMAT (2002)
Erl, T.: Service-oriented Architecture. Prentice-Hall, Englewood Cliffs (2004)
Khurana, H., Gavrila, S., Bobba, R., Koleva, R., Sonalker, A., Dinu, E., Gligor, V., Baras, J.: Integrated security services for dynamic coalitions. In: Proc. of the DISCEX III (2003)
R. Mukkamala, V. Atluri, and J. Warner. A distributed service registry for resource sharing among ad-hoc dynamic coalitions. In Lecture Notes in Computer Science. IFIP, December 2005.
Oaks, S., Wong, H.: Jini in a Nutshell. O’Reilly, Sebastopol (2000)
Philips, C., Charles, E., Ting, T., Demurjian, S.: Towards information assurance in dynamic coalitions. IEEE IAW, USMA (February 2002)
Philips, C., Ting, T.C., Demurjian, S.: Information sharing and security in dynamic coalitions. In: SACMAT (2002)
Reilly, D.: Designing Microsoft ASP.Net applications. Microsoft Press (2002)
Warner, J., Atluri, V., Mukkamala, R.: A credential-based approach for facilitating automatic resource sharing among ad-hoc dynamic coalitions. In: IFIP (August 2005) (published)
Yu, T., Winslett, M., Seamons, K.E.: Supporting structured credentials and sensitive policies through interoperable strategies for automated trust negotiation. ACM Transactions on Information and System Security 6(1), 1–42 (2003)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 IFIP International Federation for Information Processing
About this paper
Cite this paper
Mukkamala, R., Atluri, V., Warner, J., Abbadasari, R. (2006). A Distributed Coalition Service Registry for Ad-Hoc Dynamic Coalitions: A Service-Oriented Approach. In: Damiani, E., Liu, P. (eds) Data and Applications Security XX. DBSec 2006. Lecture Notes in Computer Science, vol 4127. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11805588_15
Download citation
DOI: https://doi.org/10.1007/11805588_15
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-36796-3
Online ISBN: 978-3-540-36799-4
eBook Packages: Computer ScienceComputer Science (R0)