Attribute-based authorization for structured Peer-to-Peer (P2P) networks

We present the deficiencies of traditional identity-based authorization models in structured Peer-to-Peer (P2P) networks where users' Public Key Certificates (PKCs) represent two roles, authentication and authorization, and the access to the network resources is controlled by Access Control Lis...

ver descrição completa

Detalhes bibliográficos
Autores: Suarez Touzeda, Diego, Sierra Camara, Jose Maria, Zeadally, Sherali, Soriano Ibáñez, Miguel|||0000-0003-0457-8531
Tipo de documento: artigo
Data de publicação:2015
País:España
Recursos:Universitat Politècnica de Catalunya (UPC)
Repositório:UPCommons. Portal del coneixement obert de la UPC
Idioma:inglês
OAI Identifier:oai:upcommons.upc.edu:2117/81907
Acesso em linha:https://hdl.handle.net/2117/81907
https://dx.doi.org/10.1016/j.csi.2015.04.007
Access Level:Acceso aberto
Palavra-chave:Peer-to-peer architecture (Computer networks)
Computer security
Authorization
P2P security
Attribute certificates
Systems
Xarxes punt a punt (Xarxes d'ordinadors)
Seguretat informàtica
Àrees temàtiques de la UPC::Enginyeria de la telecomunicació::Telemàtica i xarxes d'ordinadors
Àrees temàtiques de la UPC::Informàtica::Seguretat informàtica
Descrição
Resumo:We present the deficiencies of traditional identity-based authorization models in structured Peer-to-Peer (P2P) networks where users' Public Key Certificates (PKCs) represent two roles, authentication and authorization, and the access to the network resources is controlled by Access Control Lists (ACLs). With these deficiencies in mind, we propose a complete new framework for authorization in structured P2P networks based on Attribute Certificates (ACs) and a fully distributed certificate revocation system. We argue that the proposed framework yields a more flexible and secure authorization scheme for structured P2P networks while improving the efficiency of the assignment of privileges.