The Community for Technology Leaders
Creating, Connecting and Collaborating through Computing, International Conference on (2006)
University of California, Berkeley, California USA
Jan. 26, 2006 to Jan. 27, 2006
ISBN: 0-7695-2563-6
pp: 160-167
Alan H. Karp , Hewlett-Packard Laboratories
ABSTRACT
Several attempts at using the Services Oriented Architecture have failed to achieve their goals of scalability, security, and manageability. These systems, which base access decisions on the identity of the requester, have been found to be inflexible, don?t scale well, and are difficult to use and to upgrade. This paper shows that identity-based access control is a key contributor to these failures and proposes another way to approach the problem. Basing access control decisions on authorizations presented explicitly by the requester leads to a more securable and more robust architecture.
INDEX TERMS
null
CITATION
Alan H. Karp, "Authorization-Based Access Control for the Services Oriented Architecture", Creating, Connecting and Collaborating through Computing, International Conference on, vol. 00, no. , pp. 160-167, 2006, doi:10.1109/C5.2006.9
94 ms
(Ver 3.3 (11022016))