University of Kent - Home

• Contact
• Maps
• Departments

Navigation menu

School of Computing

• Home
• Research
  • Publications
  • Groups
  • Research staff
  • Projects
  • Research admissions
  • Research at Kent
• Teaching

Studying

• Becoming a postgraduate
• Becoming an undergraduate

Activities

• News
• National & International services
• Seminars
• Schools Liaison
• Outreach
• Kent IT Clinic
• Kent enterprise

Local users

• For current students and staff
• Systems Support

About us

• Contacts - How to find us
• People

Search

School of Computing

Search:

Achieving Fine-grained Access Control in Virtual Organisations

N. Zhang, L. Yao, A. Nenadic, J. Chin, C. Goble, A. Rector, D. Chadwick, S. Otenko, and Q. Shi

Concurrency and Computation: Practice and Experience, 19(9):1333-1352, June 2007 Available from http://www3.interscience.wiley.com/cgi-bin/fulltext/113392827/PDFSTART.

Abstract

In a virtual organization environment, where services and data are provided and shared amongorganizations from different administrative domains and protected with dissimilar security policies and measures, there is a need for a flexible authentication framework that supports the use of various authentication methods and tokens. The authentication strengths derived from the authentication methods and tokens should be incorporated into an access-control decision-making process, so that more sensitive resources are available only to users authenticated with stronger methods. This paper reports our ongoingefforts in designing and implementing such a framework to facilitate multi-level and multi-factor adaptive authentication and authentication strength linked fine-grained access control. The proof-ofconcept prototype is designed and implemented in the Shibboleth and PERMIS infrastructures, which specifies protocols to federate authentication and authorization information and provides a policy-driven, role-based, access- control decision-making capability.

Download publication 587 kbytes (PDF)

Bibtex Record

@article{2413,
author = {N. Zhang and L. Yao and A. Nenadic and J. Chin and C. Goble and A. Rector and D. Chadwick and S. Otenko and Q. Shi},
title = {Achieving {F}ine-grained {A}ccess {C}ontrol in {V}irtual {O}rganisations},
month = {June},
year = {2007},
pages = {1333-1352},
keywords = {},
note = {Available from http://www3.interscience.wiley.com/cgi-bin/fulltext/113392827/PDFSTART},
doi = {},
url = {http://www.cs.kent.ac.uk/pubs/2007/2413},
    publication_type = {article},
    submission_id = {10361_1155647055},
    ISSN = {1532-0626},
    journal = {Concurrency and Computation: Practice and Experience},
    publisher = {John Wiley and Sons},
    volume = {19},
    number = {9},
}

Kent wins Queen's Award