Access control in a distributed object environment using XML and roles

J. Crampton; H. Khambhammettu

Access control in a distributed object environment using XML and roles

J. Crampton, H. Khambhammettu

Research output: Contribution to journal › Article › peer-review

Abstract

We discuss the design of an integrated security architecture for authorization and authentication in a distributed object environment. Our architecture will have four main components: an authentication engine, an interface, a session manager and an authorization engine. The core component of our model is the session manager, which issues XML-based session certificates to authenticated users. A session certificate will be used by the authorization engine to establish the legitimacy of an access request by a user. We will also describe how the architecture supports dynamic revocation of session certificates and delegation.

Original language	English
Pages (from-to)	2-8
Number of pages	7
Journal	South African Computer Journal
Volume	31
Publication status	Published - 2003

Cite this

@article{adcdfd1c023447da93261f51c5ca33cf,

title = "Access control in a distributed object environment using XML and roles",

abstract = "We discuss the design of an integrated security architecture for authorization and authentication in a distributed object environment. Our architecture will have four main components: an authentication engine, an interface, a session manager and an authorization engine. The core component of our model is the session manager, which issues XML-based session certificates to authenticated users. A session certificate will be used by the authorization engine to establish the legitimacy of an access request by a user. We will also describe how the architecture supports dynamic revocation of session certificates and delegation.",

author = "J. Crampton and H. Khambhammettu",

year = "2003",

language = "English",

volume = "31",

pages = "2--8",

journal = "South African Computer Journal",

}

TY - JOUR

T1 - Access control in a distributed object environment using XML and roles

AU - Crampton, J.

AU - Khambhammettu, H.

PY - 2003

Y1 - 2003

N2 - We discuss the design of an integrated security architecture for authorization and authentication in a distributed object environment. Our architecture will have four main components: an authentication engine, an interface, a session manager and an authorization engine. The core component of our model is the session manager, which issues XML-based session certificates to authenticated users. A session certificate will be used by the authorization engine to establish the legitimacy of an access request by a user. We will also describe how the architecture supports dynamic revocation of session certificates and delegation.

AB - We discuss the design of an integrated security architecture for authorization and authentication in a distributed object environment. Our architecture will have four main components: an authentication engine, an interface, a session manager and an authorization engine. The core component of our model is the session manager, which issues XML-based session certificates to authenticated users. A session certificate will be used by the authorization engine to establish the legitimacy of an access request by a user. We will also describe how the architecture supports dynamic revocation of session certificates and delegation.

M3 - Article

VL - 31

SP - 2

EP - 8

JO - South African Computer Journal

JF - South African Computer Journal

ER -