The Experts below are selected from a list of 22218 Experts worldwide ranked by ideXlab platform
Edward E Kelley - One of the best experts on this subject based on the ideXlab platform.
-
automated generation on file access control System commands in a data processing System with front end processing of a master list
1995Co-Authors: Norman J Dauerer, Edward E KelleyAbstract:A front end is provided for an access controller for controlling access to a shared resource in a data processing System to contain a processed master list, in text form, of users to which access will be granted. The list of users may be edited by a simple editor or word processor. commands to the access controller are generated based upon a comparison of the processed master list and the edited master list. By storing access commands in the front end for the access controller, transparency of the access controller is provided to both users and the System Authorization administrator.
Rathod, Yagnik A - One of the best experts on this subject based on the ideXlab platform.
-
An access control and Authorization model with Open stack cloud for Smart Grid
Ediciones Universidad de Salamanca (España), 2020Co-Authors: Rathod, Yagnik AAbstract:In compare to Authentication for identification and relationship of an identity of a user with its task and process within the System, Authorization in access control is much anxious about confirming that user and its task in the form of System process, access to the assets of any particular domain is only approved when proven obedient to the identified policies. Access control and Authorization is always an area of interest for researchers for enhancing security of critical assets from many decades. Our prime focus and interest is in the field of access control model based on Attribute base access control (ABAC) and with this paper we tried to integrate ABAC with openstack cloud for achieving finer level of granularity in access policies for domain like smart grid. Technical advancement of current era demands that critical infrastructure like traditional electrical grid open ups to the modern information and communication technology to get the benefit in terms of efficiency, scalability, accessibility and transparency for better adaptability in real world. Incorporation of ICT with electric grid makes it possible to do greater level of bi-directional interaction among stake holders like customer, generation units, distribution units and administrations and these leads international organization to contribute for standardization of smart grid concepts and technology so that the realization of smart grid becomes reality. Smart grid is a distributed System of very large scale by its nature and needs to integrate available legacy Systems with its own security requirements. Cloud computing proven to be most efficient approach for said requirements and we have identified openstack as our cloud platform. We have integrated ABAC approach with default RBAC approach of openstack and provide a frame work that supports and integrate multiple access control polices in making Authorization decisions. Smart grid domain in considered as case study which requires support of multiple access policies (RBAC, ABAC or DAC etc) with our model for access control and Authorization
Norman J Dauerer - One of the best experts on this subject based on the ideXlab platform.
-
automated generation on file access control System commands in a data processing System with front end processing of a master list
1995Co-Authors: Norman J Dauerer, Edward E KelleyAbstract:A front end is provided for an access controller for controlling access to a shared resource in a data processing System to contain a processed master list, in text form, of users to which access will be granted. The list of users may be edited by a simple editor or word processor. commands to the access controller are generated based upon a comparison of the processed master list and the edited master list. By storing access commands in the front end for the access controller, transparency of the access controller is provided to both users and the System Authorization administrator.
Abhishek Singh Rana - One of the best experts on this subject based on the ideXlab platform.
-
Authorization and account management in the open science grid
Grid Computing, 2005Co-Authors: Markus Lorch, Ian Fisk, Kate Keahey, T. Freeman, Dennis G. Kafura, G Carcassi, T Peremutov, Abhishek Singh RanaAbstract:An attribute-based Authorization infrastructure developed for the Open Science Grid is presented. The infrastructure integrates existing identity-mapping and group-membership service using concepts prototyped in the PRIMA System. Authorization scenarios for requests to compute and data resources are detailed. A new SAML obligated Authorization decision statement is introduced that attaches an XACML obligation to the Authorization decision. The use of obligations enables site-centralized, service-independent policy management. Authorization decisions are enforced via a Workspace Service that creates constrained execution environments configured in accordance with the obligations and other attribute-based information. Finally, an experimental PRIMA Authorization service that extends and simplifies the infrastructure is described.
Markus Lorch - One of the best experts on this subject based on the ideXlab platform.
-
Authorization and account management in the open science grid
Grid Computing, 2005Co-Authors: Markus Lorch, Ian Fisk, Kate Keahey, T. Freeman, Dennis G. Kafura, G Carcassi, T Peremutov, Abhishek Singh RanaAbstract:An attribute-based Authorization infrastructure developed for the Open Science Grid is presented. The infrastructure integrates existing identity-mapping and group-membership service using concepts prototyped in the PRIMA System. Authorization scenarios for requests to compute and data resources are detailed. A new SAML obligated Authorization decision statement is introduced that attaches an XACML obligation to the Authorization decision. The use of obligations enables site-centralized, service-independent policy management. Authorization decisions are enforced via a Workspace Service that creates constrained execution environments configured in accordance with the obligations and other attribute-based information. Finally, an experimental PRIMA Authorization service that extends and simplifies the infrastructure is described.
