Building a Modular Authorization Infrastructure
Part of book or chapter of book
Chadwick, David W.
Nguyen, Tuan Anh
Authorization infrastructures manage privileges and render access control decisions, allowing \ud applications to adjust their behavior according to the privileges allocated to users. This paper describes \ud the PERMIS role based authorization infrastructure along with its conceptual authorisation, access \ud control, and trust models. PERMIS has the novel concept of a credential validation service, which \ud verifies a user’s credentials prior to access control decision making and enables the distributed \ud management of credentials. Details of the design and the implementation of PERMIS are presented along \ud with details of its integration with Globus Toolkit, Shibboleth and GridShib. A comparison of PERMIS \ud with other authorization and access control implementations is given, along with our plans for the future.
23 references, page 1 of 3
views in local repository
downloads in local repository
The information is available from the following content providers: