- Title
- Trust enhanced distributed authorisation for web services
- Creator
- Nagarajan, Aarthi; Varadharajan, Vijay; Tarr, Nathan
- Relation
- Journal of Computer and System Sciences Vol. 80, Issue 5, p. 916-934
- Publisher Link
- http://dx.doi.org/10.1016/j.jcss.2014.02.002
- Publisher
- Academic Press
- Resource Type
- journal article
- Date
- 2014
- Description
- In this paper, we propose a trust enhanced distributed authorisation architecture (TEDA) that provides a holistic framework for authorisation taking into account the state of a user platform. The model encompasses the notions of ‘hard’ and ‘soft’ trust to determine whether a platform can be trusted for authorisation. We first explain the rationale for the overall model and then describe our hybrid model with ‘hard’ and ‘soft’ trust components, followed by a description of the system architecture. We then illustrate our implementation of the proposed architecture in the context of authorisation for web services. We discuss the results and demonstrate that such a trust enhanced approach could enable better authorisation decision making, especially in a distributed environment where user platforms are subject to dynamic security threats.
- Subject
- trusted platforms; distributed authorisation; secure web services; trust enhanced security
- Identifier
- http://hdl.handle.net/1959.13/1356207
- Identifier
- uon:31635
- Identifier
- ISSN:0022-0000
- Language
- eng
- Reviewed
- Hits: 1705
- Visitors: 1615
- Downloads: 0
Thumbnail | File | Description | Size | Format |
---|