Home // ICN 2015, The Fourteenth International Conference on Networks // View article

ACROSS-FI: Attribute-Based Access Control with Distributed Policies for Future Internet Testbeds

Authors:
Edelberto Franco Silva
Natalia Castro Fernandes
Debora Muchaluat-Saade

Keywords: future internet; authorization; authentication; attribute-based access control.

Abstract:
Interests in access control authorization methods for distributed resources have been growing as more shared resources environments and resource federations have been made available, both in academy and in industry. Different proposals aiming at creating a granular and scalable access control in those distributed environments have been presented in the literature. The standardization of access control models based on roles and attributes are examples of that effort. However, none of the existing proposals or standards present a complete authentication and authorization framework that can be adapted for different distributed environments. This work presents an authentication and authorization framework based on policies and attribute aggregation for controlling access into Future Internet (FI) distributed testbeds. A generic solution for attribute-based access control in Future Internet testbeds federation is implemented and evaluated, providing a generic interface to allow communication between the FI resource federation and our access control proposal. Based on user and resource's attributes, policies are dynamically applied to control which resources a user may require. This work has been validated in an experimental identity management laboratory (GIdLab) enabling the use of identity management services offered in an academic identity federation and in an experimental environment for the Future Internet.

Pages: 198 to 204

Copyright: Copyright (c) IARIA, 2015

Publication date: April 19, 2015

Published in: conference

ISSN: 2308-4413

ISBN: 978-1-61208-398-8

Location: Barcelona, Spain

Dates: from April 19, 2015 to April 24, 2015