Security aspects in publish/subscribe systems

Fiege, Ludger

doi:10.1049/ic:20040381

Cited by 39 publications

(18 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Being content-based, CBR inherently requires brokers to access the content of messages, something that potentially breaks message confidentiality. Some initial proposals exists to overcome this limitation [31,74,61,58,67,44,54,53] but a fully scalable and efficient solution for secure communication in CBR networks has still to emerge. Moreover, the web services world has developed its own standards about security (i.e., WS-Security [51]), which should be integrated into the chosen CBR solution.…”

Section: Discussionmentioning

confidence: 99%

On adopting Content-Based Routing in service-oriented architectures

Cugola

Nitto

2008

Information and Software Technology

View full text Add to dashboard Cite

Section: Discussionmentioning

confidence: 99%

On adopting Content-Based Routing in service-oriented architectures

Cugola

Nitto

2008

Information and Software Technology

View full text Add to dashboard Cite

“…Miklós describes a method to define access control policies on clients' advertisement and subscription filters [13], which assumes that the infra-structure is trusted. Fiege et al [4] attempted to address the level of trust between publishers, subscribers and infra-structure through the development of scopes of visibility. An implementation on the REBECA [15] shows how such a scoping approach might work.…”

Section: Related Workmentioning

confidence: 99%

Finding Trusted Publish/Subscribe Trees

Naicken

Wakeman

Chalmers

2012

IFIP Advances in Information and Communication Technology

View full text Add to dashboard Cite

. Publish/Subscribe systems assume that clients and brokers abide by the matching and forwarding protocols. Such an assumption implies implicit trust between all components of the system and has led to security issues being largely ignored. As publish/subscribe is increasingly used in applications where implicit trust can not be assumed, an approach is required to mitigate misbehaviour. We propose the construction and reconfiguration of the event forwarding topology, the publish/subscribe tree (PST), with respect to the trust requirements of the clients. The principal contribution of this paper is a trust metric for PSTs, which aggregates each client's trust evaluation of a PST to give a socially acceptable trust evaluation and allows for the ordering of PSTs. Additionally, we define the PST trust maximisation problem with overhead budget, which is solved by the PST that maximises trust within an overhead budget for a given advertisement. A tabu search based algorithm for this problem is presented and is shown to scale to large problem instances and give good approximations of the optimal solutions.

show abstract

“…A scope [11,12] is a grouping structure that bundles sets of pub/sub brokers and clients, constraining the visibility of events to its members. A scope sets the boundaries for transmission, allowing control over the propagation of events to other scopes.…”

Section: Related Workmentioning

confidence: 99%

Disclosure control in multi-domain publish/subscribe systems

Singh

Eyers

Bacon

2011

Proceedings of the 5th ACM International Conference on Distributed Event-Based System

View full text Add to dashboard Cite

Publish/subscribe is an effective paradigm for event dissemination over wide-area systems. However, there is tension between the convenience of open information delivery, and the need to protect data from unauthorised access. Publish/subscribe security models tend to focus on protecting the client API, or encrypting events and managing disclosure through key distribution. However, some application environments require more stringent, fine-grained controls governing precisely the data disclosed and transmitted given particular circumstances. In this paper, we present Interaction Control, a policy model that overlays context-aware, point-to-point (hop-level) controls onto a publish/subscribe network. The approach is unique as it allows granular control over i) the construction of the dissemination network, and ii) the information flows within the network. Interaction Control was designed considering legal obligations, to enable those responsible for information to transmit data on a need-to-know basis. Security policies set the bounds for communication, enforced only where necessary at specific points of the publish/subscribe process, to provide control while retaining the efficiency benefits of the paradigm. We present implementation details and results showing that any security overheads must be considered with respect to the overall network load.

show abstract

Security aspects in publish/subscribe systems

Cited by 39 publications

References 15 publications

On adopting Content-Based Routing in service-oriented architectures

On adopting Content-Based Routing in service-oriented architectures

Finding Trusted Publish/Subscribe Trees

Disclosure control in multi-domain publish/subscribe systems

Contact Info

Product

Resources

About