Design and implementation of an attribute-based authorization management system
MetadataShow full item record
The proposed research is in the area of attribute-based authorization systems. We address two specific research problems in this area. First, evaluating authorization policies in multi-authority systems where there are multiple stakeholders in the disclosure of sensitive data. The research proposes to consider all the relevant policies related to authorization in real time upon the receipt of an access request and to resolve any differences that these individual policies may have in authorization. Second, to enable a lot of entities to participate in the authorization process by asserting attributes on behalf of the principal accessing resources. Since it is required that these asserted attributes be trusted by the authorization system, it is necessary that these entities are themselves trusted by the authorization system. Two frameworks are proposed to address these issues. In the first contribution a dynamic authorization system is proposed which provides conflict detection and resolution among applicable policies in a multi-authority system. The authorization system is dynamic in nature and considers the context of an access request to adapt its policy selection, execution and conflict handling based on the access environment. Efficient indexing techniques are used to increase the speed of authorization policy loading and evaluation. In the second contribution, we propose a framework for service providers to evaluate trust in entities asserting on behalf of service users in real time upon receipt of an access request. This trust evaluation is done based on a reputation system model, which is designed to protect itself against known attacks on reputation systems.
Showing items related by title, author, creator and subject.
Soban, Danielle Suzanne; Mavris, Dimitri N. (Georgia Institute of Technology, 2001-10)The need for a comprehensive framework for the analysis of military system effectiveness is presented. Changes in the world’s economy and its effect on decision making is discussed, as well as the three primary ways decision ...
Massey, Kevin C.; Heiges, Michael W.; DiFrancesco, Ben; Ender, Tommer Rafael; Mavris, Dimitri N. (Georgia Institute of Technology, 2006-06)A System-of-Systems design methodology is used to evaluate tradeoffs in the design of a guided bullet system for mortar defense. Guided bullets were designed to match the calibers of four different existing auto guns and ...
Design of solar hot water system, solar makeup water preheat system and solar building heating system for the aircraft corrosion control facility, Robins AFB Murphy, Charles Andrew (Georgia Institute of Technology, 1978)