Access control with IBM Tivoli Access Manager

ACM Transactions on Information and System Security

Volumn 6, Issue 2, 2003, Pages 232-257

  Karjoth, Günter ^a  

^a IBM RESEARCH ZURICH   (Switzerland)

Author keywords

Access control; Authorization management; Web servers; WWW security

Indexed keywords

ACCESS CONTROL; AUTHORIZATION MANAGEMENT; WEB SERVERS; WWW SECURITY;

COMPUTER OPERATING SYSTEMS; DATA PROCESSING; INFORMATION MANAGEMENT; PUBLIC POLICY; SECURITY OF DATA; SERVERS;

WORLD WIDE WEB;

EID: 2942624556     PISSN: 10949224     EISSN: None     Source Type: Journal    
DOI: 10.1145/762476.762479     Document Type: Article

References (18)

1. BERNERS-LEE, T., FIELDING, R., AND MASINTER, L. 1998. Uniform resource identifiers (URI): Generic syntax. RFC 2396.
2. BEZNOSOV, K., DENG, Y., BLAKLEY, B., BURT, C., AND BARKLEY, J. 1999. A resource access decision service for CORBA-based distributed systems. In 15th Annual Computer Security Applications Conference (ACSAC'99). 310-319.
3. BLAZE, M., FEIGENBAUM, J., AND KEROMYTIS, A. 1999. KeyNote: Trust management for public-key infrastructures. In Security Protocols - 6th International Workshop. Lecture Notes in Computer Science, vol. 1550. Springer Verlag, Berlin, 59-66.
4. BLOUNT, S. 1999. Securing your insecurities on the Web. In 15th Annual Computer Security Applications Conference (ACSAC'99). Available at www.acsac.org/1999/papers/thu-c-1300-netegrity.pdf.
5. FERRAIOLO, D. F., BARKLEY, J. F., AND KUHN, D. R. 1999. A role-based access control model and reference implementation within a coprorate intranet. ACM Trans. Inf. Syst. Sec. 2, 1, 34-64.
6. FOLEY, S. 1997. Implementing Chinese Walls in Unix. Comput. Sec. J. 16, 6, 551-563.
7. JAJODIA, S., KUDO, M., AND SUBRAHMAMAN, V. S. 2001. Provisional authorization. In E-commerce Security and Privacy, A. Ghosh, Ed. Kluwer Academic Publishers, Boston, MA, 133-159. Also published in Workshop on Security and Privacy in E-Commerce (WSPEC), 2000.
8. JAJODIA, S., KUDO, M., AND SUBRAHMAMAN, V. S. 2001. Provisional authorization. In E-commerce Security and Privacy, A. Ghosh, Ed. Kluwer Academic Publishers, Boston, MA, 133-159. Also published in Workshop on Security and Privacy in E-Commerce (WSPEC), 2000.
9. JAJODIA, S., SAMARATI, P., AND SUBRAHMANIAN, V. 1997. A logical language for expressing authorizations. In IEEE Symposium on Research in Security and Privacy. IEEE Computer Society Press, Los Alamitos, CA, 31-42.
10. KARJOTH, G. 2000. Authorization in CORBA security. J. Comput. Sec. 8, 2/3, 89-108.
11. PARK, J. S., SANDHU, R., AND AHN, G.-J. 2001. Role-based access control on the web. ACM Trans. Inf. Syst. Sec. 4, 1, 37-71.
12. PATO, J. 1990. DCE Access Control Lists (ACL's). OSF DCE specifications.
13. SNYDER, J. 2000. The new holy grail? Inf. Sec. Mag.
14. SWIFT, M. M., HOPKINS, A., BRUNDRETT, P., VAN DYKE, C., GARG, P., CHAN, S., GOERTZEL, M., AND JENSENSWORTH, G. 2002. Improving the granularity of access control for Windows 2000. ACM Trans. Inf. Syst. Sec. 5, 4, 398-437.
15. THE OPEN GROUP. 2000. Authorization (AZN) API. Open Group Technical Standard C908.
16. VARADHARAJAN, V., CRALL, C., AND PATO, J. 1998. Issues in the design of secure authorization service for distributed applications. In Global Telecommunications Conference (GLOBECOM 1998) - The Bridge to Global Integration. IEEE Press, New York.
17. WOO, T. Y. AND LAM, S. S. 1993. A framework for distributed authorization. In 1st ACM Conference on Computer and Communications Security, V. Ashby, Ed. ACM Press, New York, 112-118.
18. ZURKO, M., SIMON, R., AND SANFILIPPO, T. 1999, A user-centered modular authorization service built on RBAC foundation. In IEEE Symposium on Research in Security and Privacy. IEEE Computer Society Press, Los Alamitos, CA, 57-71.