University of Kent - The UK's European University

University of Kent - Home

Gold award for Kent in Teaching Excellence Framework TEF

About
Planning and strategy
Strategy: Kent 2025

UK's European university

Annual review and reports

How we operate
Committees
Governance
Constitution

Regulations

Charity information

Modern Slavery Act Transparency Statement

People
Vice-Chancellor

Executive Group

Principal officers

Honorary graduates

Departments
Schools and faculties

Professional services

External services

Complete A-Z

More about Kent
Career Opportunities

Essential Kent

Eastern ARC

Regional impact

Community relations

Events and what's on
Full calendar

Undergraduate term dates

Gulbenkian
Research
Excellence at Kent
Latest research news

REF 2021

Research impact

Expertise

Publications

Public engagement

Departments/people
Find a Kent expert

Schools and faculties

Research Services

Innovation & Enterprise

Graduate School

Academic/research jobs

Research degrees
Search courses

Research degrees

How to apply

Postgraduate funding

Graduate school
Courses
Undergraduate courses
Search courses
How to apply
Fees and funding
Undergraduate courses 2023
Search courses
How to apply
Fees and funding
Study abroad
Go abroad

Postgraduate courses
Search courses

How to apply

Research degrees

Taught courses

Fees and funding

Part-time and short courses
Online prospectus

Summer schools

International
Foundation (IFP)
Pre-sessional English

Short-term programmes

Visit Kent
Open Days

Applicant Days

Informal visits

Kent around the world

Useful links
Accommodation

Fees and funding

Scholarships

Locations

Information for...
International students

Parents and family

Applicants

New students
Locations
UK locations
Canterbury

Medway
Tonbridge

Validated institutions

European centres
Brussels

Paris

Other locations
Exchanges with over 100 overseas universities
International
Courses
Study and work abroad

Double-degrees

Short-term study options

'International' courses

Erasmus exchanges

International students
Study at Kent

Application process

When you arrive

International Partnerships
Worldwide partnerships

International exchanges

Alumni groups/networks

Contacts
International Recruitment

International Partnerships

English & world languages

Strategy & reputation
International impact

World-leading research

UK's European university

Maps
International impact

International Research Impact

Campus locations
Business
International expertise
Business services

Collaborative projects
Consultancy
Facilities
Employability points

Courses
Undergraduate

Postgraduate

Part-time (undergraduate)

Executive education

Contacts
Careers & Employability Service

Innovation & Enterprise

Kent Business School

Conferences and functions

Sports centre and facilities
News
News Centre
Latest stories
Expert comment
Press office
Social media
RSS feeds

Students and staff
Student news
Staff news
Campus transport news
IT service alerts
Submit a story
Alumni
Lasting connections...
Alumni and friends

News

Events

Community

Alumni groups

Former staff

Useful links
Telephone Campaign

Congregations

Honorary graduates

Discount on fees

Alumni scholarships

Online giftshop
Giving
Major projects
Kent Law Campaign

Kent Opportunity Fund

Hong Kong & China Portal

Ways to give
Telephone Campaign

Online

By post or phone

Other options..

School of Computing

Search

School of Computing

PERMIS: a modular authorization infrastructure

David W Chadwick, Gansen Zhao, Sassa Otenko, Romain Laborde, Linying Su, and Tuan Anh Nguyen

Concurrency and Computation: Practice and Experience, 20(11):182-196, August 2008 Online ISSN: 1532-0634 [doi].

Abstract

Authorization infrastructures manage privileges and render access control decisions, allowing applications to adjust their behavior according to the privileges allocated to users. This paper describes the PERMIS role based authorization infrastructure along with its conceptual authorization, access control, and trust models. PERMIS has the novel concept of a credential validation service, which verifies a user�s credentials prior to access control decision making and enables the distributed management of credentials. PERMIS also supports delegation of authority, thus credentials can be delegated between users, further decentralizing credential management. Finally, PERMIS supports history based decision making which can be used to enforce such things as separation of duties and cumulative use of resources. Details of the design and the implementation of PERMIS are presented along with details of its integration with Globus Toolkit, Shibboleth and GridShib. A comparison of PERMIS with other authorization and access control implementations is given, along with suggestions where future research and development is still needed.

Download publication 298 kbytes (PDF)

Bibtex Record

@article{2834,
author = {David W Chadwick and Gansen Zhao and Sassa Otenko and Romain Laborde and Linying Su and Tuan Anh Nguyen},
title = {{P}{E}{R}{M}{I}{S}: a modular authorization infrastructure},
month = {August},
year = {2008},
pages = {182-196},
keywords = {determinacy analysis, Craig interpolants},
note = {Online ISSN: 1532-0634},
doi = {10.1002/cpe.1313},
url = {http://www.cs.kent.ac.uk/pubs/2008/2834},
    publication_type = {article},
    submission_id = {16835_1225726698},
    ISSN = {1532-0626},
    journal = {Concurrency and Computation: Practice and Experience},
    volume = {20},
    number = {11},
}

School of Computing, University of Kent, Canterbury, Kent, CT2 7NF

Enquiries: +44 (0)1227 824180 or contact us.

Last Updated: 21/03/2014

© University of Kent - Contact | Feedback | Legal | FOI | Cookies