Affiliation:
1. Digital Equipment Corp., Palo Alto, CA
Abstract
We describe a design for security in a distributed system and its implementation. In our design, applications gain access to security services through a narrow interface. This interface provides a notion of identity that includes simple principals, groups, roles, and delegations. A new operating system component manages principals, credentials, and secure channels. It checks credentials according to the formal rules of a logic of authentication. Our implementation is efficient enough to support a substantial user community.
Publisher
Association for Computing Machinery (ACM)
Reference20 articles.
1. Authentication and delegation with smart-cards
2. A calculus for access control in distributed systems
3. BIRRELL A. HISGEN A. JERIAN C. MANN T. AND SWART G. 1993. The Echo distributed file system. Rep. 111 Systems Research Center Digital Equipment Corp. Palo Alto Calif. BIRRELL A. HISGEN A. JERIAN C. MANN T. AND SWART G. 1993. The Echo distributed file system. Rep. 111 Systems Research Center Digital Equipment Corp. Palo Alto Calif.
Cited by
77 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献
1. Policy Transparency;Proceedings of the 2022 ACM Workshop on Software Supply Chain Offensive Research and Ecosystem Defenses;2022-11-08
2. Multitenant Access Control for Cloud-Aware Distributed Filesystems;IEEE Transactions on Dependable and Secure Computing;2019-11-01
3. Systematizing Decentralization and Privacy: Lessons from 15 Years of Research and Deployments;Proceedings on Privacy Enhancing Technologies;2017-10-01
4. Attestation Transparency;Proceedings of the 11th ACM on Asia Conference on Computer and Communications Security;2016-05-30
5. Authorizing Network Control at Software Defined Internet Exchange Points;Proceedings of the Symposium on SDN Research;2016-03-14