Requirements for scalable access control and security management architectures

Keromytis, Angelos D.; Smith, Jonathan M.

doi:10.1145/1239971.1239972

ACM Trans. Internet Technol.

2007

DOI: 10.1145/1239971.1239972

|View full text |Cite

Requirements for scalable access control and security management architectures

Angelos D. Keromytis

Jonathan M. Smith

Abstract: Maximizing local autonomy by delegating functionality to end nodes when possible (the "end to end" design principle) has led to a scalable Internet. Scalability and the capacity for distributed control have unfortunately not extended well to resource access-control policies and mechanisms. Yet management of security is becoming an increasingly challenging problem, in no small part due to scaling up of measures such as number of users, protocols, applications, network elements, topological constraints, and func… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2010

2025

Publication Types

Select...

Article5

Relationship

Self Cite0

Independent5

Authors

Journals

Cited by 26 publications

References 29 publications

(19 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

Active access control (AAC) with fine‐granularity and scalability

Park¹,

An²,

Liu³

2010

Security Comm Networks

View full text Add to dashboard Cite

Strong access control mechanisms become most critical when we need security services in large-scale computing environments of sensitive organizations. Furthermore, if users join or leave such computing environment frequently, requiring different access control decisions based on their current job responsibilities and contexts, the need for advanced access control is pressing. Although the currently available access control approaches have a great potential for providing reliable service, there are still critical obstacles to be solved, especially in large-scale, dynamic computing environments. In this paper we introduce an advanced access control mechanism, Active Access Control (AAC), which accounts for the ability to make dynamic access control decisions based not only on pre-defined privileges, but also on the current situation of the user. The framework of the proposed AAC approach provides fine-grained access control, by considering a variety of attributes about the user and the current computing environment, especially, when the users contexts are frequently changed. Although the outputs of the AAC approach can be integrated with any other existing access control mechanisms and improve the overall fine-granularity, as a full demonstration of our approach for fine-granularity as well as scalability, in this particular paper we focus on large-scale computing environments and integrate the AAC results with the role-based approach. Finally, in order to prove the feasibility of our proposed idea we implement the AAC approach with roles and discuss the evaluation results with existing approaches.

show abstract

Active access control (AAC) with fine‐granularity and scalability

Park¹,

An²,

Liu³

2010

Security Comm Networks

View full text Add to dashboard Cite

show abstract

A generic Kerberos-based access control system for the cloud

Ayed

Zaghdoudi

2016

Ann. Telecommun.

View full text Add to dashboard Cite

A comprehensive review of usage control frameworks

Akaichi,

Kirrane

2025

Computer Science Review

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Requirements for scalable access control and security management architectures

Cited by 26 publications

References 29 publications

Active access control (AAC) with fine‐granularity and scalability

Active access control (AAC) with fine‐granularity and scalability

A generic Kerberos-based access control system for the cloud

A comprehensive review of usage control frameworks

Contact Info

Product

Resources

About