Effects of architectural decisions in authentication and authorisation infrastructures

Proceedings - Second International Conference on Availability, Reliability and Security, ARES 2007

Volumn , Issue , 2007, Pages 230-237

  Schläger, Christian ^a   Ganslmayer, Monika ^b  

^a UNIVERSITY OF REGENSBURG   (Germany)

^b RandL Inc   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

CLIENT SERVER COMPUTER SYSTEMS; DATA PRIVACY; DECISION MAKING; INFORMATION MANAGEMENT; INTERNET SERVICE PROVIDERS;

CLIENT SERVICE PROVIDER; PRIVACY CONTRIBUTIONS; SERVICE PROVIDERS;

COMPUTER ARCHITECTURE;

EID: 34548191570     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2007.75     Document Type: Conference Paper

References (20)

1. Anderson, A., Lockhart, H.: SAML 2.0 profile of XACML. http://docs.oasis-open.org/ (2004).
2. Busch, S., Muschall, B., Pemul, G., Priebe, T.: Authrule: A Generic Rule-Based Authorization Module. In: Proc. of the 20th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (IFIP 11.3), Sofia Antipolis, France (2006).
3. Cantor, Scott, Kemp John: Liberty ID-FF and WSF Protocols and Schema Specification. http://www.projectliberty.org/specs/draft-liberty-idff-protocols- schema-1.2-errata-v3.0.pdf(2005).
4. Cantor, Scott: Shibboleth Architecture, Protocols and Profiles, 10 Sept. 2005. http://shibboleth.internet2.edu/docs/internet2-mace-shibboleth-arch- protocols-latest.pdf (2005).
5. Castro-Rojo, R., Lopez, D. R.: The PAPI system: point of access to providers of information. Computer Networks 37 6, Pages 703-710 (2001).
6. Federrath, F.: Privacy Enhanced Technologies: Methods, Markets, Misuse. Proc. 2nd Internat Conference on Trust, Privacy, and Security in Digital Business (TrustBus), Goteborg, Denmark, 2005. LNCS, Volume 3592, Pages 1-9 (2005).
7. Katsikas, S. K., Lopez, J., Pernul, G.: Trust, Privacy and Security in E-Business: Requirements and Solutions. Proc. 10th Panhellenic Conference on Informatics (PCI), Volas, Greece, 2005. LNCS, Volume 3746, Pages 548-558 (2005).
8. Lampson, B., Abadi, M., Burrows, M., and Wobber, E.: Authentication in Distributed Systems: Theory and Practice. ACM Transaction on Computer Systems, Vol. 10, No. 4, Pages 265-310, (1992).
9. Lopez, G., Gomez, A.F., Marin, R., Canovas, O.: A Network Access Control Approach Based on the AAA Architecture and Authorization Attributes. In. Proc of the 19th IEEE Internat. Parallel and Distributed Processing Symposium (IPDPS'05)-Workshop, Pages 287-295 (2005).
10. Lopez, J., Oppliger, R., Pernul, G.: Authentication and Authorization Infrastructures (AAIs): A Comparative Survey. Computers & Security 23 7, Pages 578-590 (2004).
11. Microsoft: Microsoft.NET Passport Review Guide. http://download. microsoft.com/download/a/f/4/af49b391-086e-4aa2-a84b-ef6d916b2f08/ passport_reviewguide.doc (2004).
12. OASIS extensible Access Control Markup Language TC: extensible Access Control Markup Language (XACML). http://www.oasis-open.org/committees/ (2006).
13. OASIS Security Services TC: Security Assertion Markup Language (SAML). http://www.oasis-open.org/committees/ (2006).
14. Priebe, T., Fernandez, E.B., Mehlau, J.I., Pemul, G.: A Pattern System for Access Control. Proc. of the 18th Annual IFIP WG 11.3 Working Conference on Data and Application Security (DBSec 2004), Sitges, Spain (2004).
15. Schläger, C., Nowey, T., Montenegro, M.: A Reference Model for Authentication and Authorisation Infrastructures Respecting Privacy and Flexibility in b2c eCommerce. 1st Internat. Conference on Availability, Reliability and Security (ARES) 2006, IEEE Computer Society, Pages 709-716 (2006).
16. Schläger, C., Nowey, T.: Towards a Risk Management Perspective on AAIs. Proc. 3rd Internat. Conference on Trust, Privacy & Security in Digital Business (TrustBus), Krakow, Poland, 2006. LNCS, Volume 4083, Pages 41-50 (2006).
17. Schläger, C., Pemul, G.: Authentication and Authorisation Infrastructures in b2c e-Commerce. Proc. of the 6th Internat. Conference on Electronic Commerce and Web Technologies (EC-Web), Goteborg, Denmark, 2005. LNCS, Volume 3590, Pages 306-315 (2005).
18. Schläger, C., Sojer, M., Muschall, B., Pemul, G.: Attribute-based Authentication and Authorisation Infrastructures for E-Commerce Providers. Proc. of the 7th Internat. Conference on Electronic Commerce and Web Technologies (EC-Web), Krakow, Poland, 2006. LNCS, Volume 4082, Pages 132-141 (2006).
19. Tanenbaum, A. S., van Steen, M.: Distributed Systems: Principles and Paradigm. Upper Saddle River, NJ: Prentice Hall (2002).
20. Yuan, E., Tong, J.: Attribute Based Access Control (ABAC) for Web Services. Internat. Conference on Web Services (ICWS) 2005, IEEE Computer Society, Pages 561-569 (2005).