Files in this item



application/pdf3337839.pdf (3MB)Restricted to U of Illinois
(no description provided)PDF


Title:Towards Practical and Secure Decentralized Attribute -Based Authorization Systems
Author(s):Lee, Adam J.
Doctoral Committee Chair(s):Winslett, Marianne
Department / Program:Computer Science
Discipline:Computer Science
Degree Granting Institution:University of Illinois at Urbana-Champaign
Subject(s):Computer Science
Abstract:We first show that existing ABAC theory does not properly account for the asynchronous nature of open systems, which allows attackers to subvert these systems by forcing decisions to be made using inconsistent system states. To address this, we develop provably-secure and lightweight consistency enforcement mechanisms suitable for use in trust negotiation and distributed proof systems. We next focus on deployment issues, and investigate how user interactions can be audited in the absence of concrete user identities. We develop the technique of virtual fingerprinting, which can be used to accomplish this task without adversely affecting the scalability of audit systems. Lastly, we present TrustBuilder2, which is the first fully-configurable framework for trust negotiation. Within this framework, we examine availability problems associated with the trust negotiation process and develop a novel approach to policy compliance checking that leverages an efficient pattern-matching approach to outperform existing techniques by orders of magnitude.
Issue Date:2008
Description:208 p.
Thesis (Ph.D.)--University of Illinois at Urbana-Champaign, 2008.
Other Identifier(s):(MiAaPQ)AAI3337839
Date Available in IDEALS:2015-09-25
Date Deposited:2008

This item appears in the following Collection(s)

Item Statistics