Architecting dependable access control systems for multi-domain computing environments

MacHulak, M; Parkin, S; Van, Moorsel, A

doi:10.1007/978-3-642-10248-6_3

Architecting dependable access control systems for multi-domain computing environments

Lookup NU author(s): Maciej Machulak, Dr Simon Parkin, Professor Aad van Moorsel

Downloads

Full text for this publication is not currently held within this repository. Alternative links are provided below where available.

Abstract

Modern computing systems are built based on Service Oriented Architectures and are made up of multiple distributed components. They often span separate and autonomous domains of administration and involve dynamic collaboration. Resources and services are exposed as Web Services that are a natural choice for achieving interoperability in a heterogeneous computing environment. Access control systems ensure that services are protected against unauthorised access. Architecting such systems in multi-domain computing environments poses numerous challenges that must be considered. Such systems must be modular, extensible and should have reusable components. Authorisation needs to span separate and autonomous domains of administration, scale to large user and resource bases and should be efficient enough to handle even fine-grained interactions between highly distributed components. In this paper we present a requirements analysis for architecting dependable access control systems for multi-domain computing environments. In particular, we address those environments that are built based on SOA and use Web Services as the underlying connection technology. We refer to relevant standards and technologies that are of significant importance when architecting access control for such environments. © 2009 Springer-Verlag Berlin Heidelberg.