Access control in publish/subscribe systems

Bacon, Jean; Eyers, David; Singh, Jatinder; Pietzuch, Peter

doi:10.1145/1385989.1385993

Cited by 62 publications

(52 citation statements)

References 30 publications

(30 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Bacon et al [1] already explored access control based on contextual information in publish/subscribe systems; with more details, they focus on a Message Oriented Middleware (MOM) for large scale architectures with multiple administration domains. They use a dedicated security infrastructure for credential management (OA-SIS RBAC [2]).…”

Section: Access Control In Interaction Patternsmentioning

confidence: 99%

Context-sensitive authorization in interaction patterns

Hourdin

Tigli

Lavirotte

et al. 2009

Proceedings of the 6th International Conference on Mobile Technology, Application &Amp; Systems - Mobility '09

View full text Add to dashboard Cite

Main requirement of recent computing environments, like mobile and then ubiquitous computing, is to adapt applications to context. On the other hand, access control generally trust users once they have authenticated, despite the fact that they may reach unauthorized situations. We analyse how dynamic information can be used to improve security in the authorization process, and what are the implications when applied to interaction patterns. We experiment and validate our approach using context as an authorization factor for eventing in Web service for device (like UPnP or DPWS).

show abstract

Section: Access Control In Interaction Patternsmentioning

confidence: 99%

Context-sensitive authorization in interaction patterns

Hourdin

Tigli

Lavirotte

et al. 2009

Proceedings of the 6th International Conference on Mobile Technology, Application &Amp; Systems - Mobility '09

View full text Add to dashboard Cite

show abstract

“…Bacon et al [6] presented architecture which contains ad-ministration domains sharing a dedicated event-broker system. They had discovered this to be suitable for some applications.…”

Section: Introductionmentioning

confidence: 99%

Secure Publish/Subscribe System using SK IBE Approach

Kasarlewar¹

2017

Icsesd-2017

View full text Add to dashboard Cite

show abstract

“…At the same time, event-based systems require fundamentally different approaches to security that reflect their heterogeneous and loosely coupled nature [2]. While event-based applications enable timely information sharing within and between autonomous administrative parts of a distributed system, this has to occur in a secure and constrained fashion.…”

Section: Introductionmentioning

confidence: 99%

Security in Multi-domain Event-based SystemsSicherheit in ereignis-basierten Mehrdomänensystemen

Bacon

Eyers

Singh

et al. 2009

Itit

Self Cite

View full text Add to dashboard Cite

Summary Event-based systems give the potential for active information sharing. The event-based paradigm, if used for event transport, provides loose coupling between components, many-to-many communication and mutual anonymity of event producers and event consumers. This communication style has been adopted enthusiastically for convenience of programming; particularly for financial processing, healthcare applications and sensor-based systems. But some data is sensitive, and its visibility must be controlled carefully for personal and legal reasons. Our research projects have explored this space for some time, investigating application domains in which the event-based paradigm is appropriate yet where security is an issue. We discuss security issues for multi-domain, event-based systems, considering the requirements of applications and the risk associated with failure. We provide an overview of the state-of-the-art in secure event-based systems: research already carried out, work in progress and issues still to be addressed. This is of relevance to emerging largescale systems required by government and public bodies for domains such as healthcare, police, transport and environmental monitoring.Zusammenfassung Ereignis-

show abstract

Access control in publish/subscribe systems

Cited by 62 publications

References 30 publications

Context-sensitive authorization in interaction patterns

Context-sensitive authorization in interaction patterns

Secure Publish/Subscribe System using SK IBE Approach

Security in Multi-domain Event-based SystemsSicherheit in ereignis-basierten Mehrdomänensystemen

Contact Info

Product

Resources

About