JCP 2006 Vol.1(8): 13-26 ISSN: 1796-203X
doi: 10.4304/jcp.1.8.13-26
doi: 10.4304/jcp.1.8.13-26
A Policy-driven Approach to Dynamic Composition of Authentication and Authorization Patterns and Services
Judith E. Y. Rossebø1, Rolv Bræk2
1NTNU, Department of Telematics, Trondheim and Telenor R&I, Fornebu, Norway
2NTNU, Department of Telematics, Trondheim, Norway
Abstract—During the past decade, the telecommunication environment has evolved from single operator featuring voice services to multi-operator featuring a range of different types of services. Services are being provided today in a distributed manner in a connectionless environment requiring cooperation of several components and actors. This paper focuses on the incremental means to ensure access to services for authorized users only by composing authentication and authorization patterns and services. We propose a novel framework of authentication and authorization patterns for securing access to services for authorized users only, and we demonstrate how the patterns can be dynamically composed with services using a policy-driven approach.
Index Terms—authentication, authorization, access control, policy, service composition
2NTNU, Department of Telematics, Trondheim, Norway
Abstract—During the past decade, the telecommunication environment has evolved from single operator featuring voice services to multi-operator featuring a range of different types of services. Services are being provided today in a distributed manner in a connectionless environment requiring cooperation of several components and actors. This paper focuses on the incremental means to ensure access to services for authorized users only by composing authentication and authorization patterns and services. We propose a novel framework of authentication and authorization patterns for securing access to services for authorized users only, and we demonstrate how the patterns can be dynamically composed with services using a policy-driven approach.
Index Terms—authentication, authorization, access control, policy, service composition
Cite: Judith E. Y. Rossebø, Rolv Bræk, "A Policy-driven Approach to Dynamic Composition of Authentication and Authorization Patterns and Services," Journal of Computers vol. 1, no.8, pp. 13-26, 2006.
General Information
ISSN: 1796-203X
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO, ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat,etc
E-mail: jcp@iap.org
-
Nov 14, 2019 News!
Vol 14, No 11 has been published with online version [Click]
-
Mar 20, 2020 News!
Vol 15, No 2 has been published with online version [Click]
-
Dec 16, 2019 News!
Vol 14, No 12 has been published with online version [Click]
-
Sep 16, 2019 News!
Vol 14, No 9 has been published with online version [Click]
-
Aug 16, 2019 News!
Vol 14, No 8 has been published with online version [Click]
- Read more>>