Towards flexible authorization management
Item Type:Conference Paper
Citation:Argyroudis, Patroklos G. and O'Mahony, Donal. 'Towards flexible authorization management' in Proceedings of the 10th IEEE Symposium on Computers and Communications, 2005, 10th IEEE International Symposium on Computers and Communications (ISCC'05), Cartagena, Spain, June 27 - 30, IEEE, 2005, pp. 421-426.
patrokolos.pdf (publisher pdf) 120.1Kb
During the last years there have been a lot of proposals in the literature for systems that attempt to manage the process of trust establishment. However, the engineering details related to the exchange and negotiation of authorization credentials have not received similar attention. Existing solutions like SSL/TLS and IPsec have limitations that minimize their applicability. In this paper we propose a new protocol, the authorization exchange protocol (AXP), that provides a modular and extensible solution to this problem. It is situated between the application and the network layers acting as an authorization middleware component and handles the process of transmitting and receiving service access requests and replies, along with the credentials that are required to support them. In order to allow its use in securing delay sensitive applications, AXP has been designed to work over unreliable datagram transport protocols. We also present a case study and evaluate the performance of our proposal.
Science Foundation Ireland
Irish Research Council for Science Engineering and Technology
Type of material:Conference Paper
Availability:Full text available