Chadwick, David W. and Lunt, Graeme and Zhao, Gansen
Secure Role-based Messaging.
In: Eighth IFIP TC-6 TC-11 Conference on Communications and Multimedia Security (CMS 2004),Windermere, UK, SEP 15-18, 2004, Windermere, England .
(Full text available)
This paper describes a secure role based messaging system design based on the use of X.509 Attribute Certificates for holding user roles. Access to the mes-sages is authorised by the PERMIS Privilege Management Infrastructure, a pol-icy driven role based access control (RBAC) infrastructure, which allows the assignment of roles to be distributed between trusted issuing authorities, and allows a change of access control policy at runtime. Messages can be sent by roles and users, and can be sent to roles and users. Messages are secure in their exchange between senders and recipients. Details of the security and messaging design are presented.
- Depositors only (login required):