TY - GEN
T1 - SIMS
T2 - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
AU - Jiang, Keyu
AU - Dasgupta, Partha
N1 - Funding Information:
Effort sponsored by the Defense Advanced Research Projects Agency, under agreement numbers F30602-99-1-0517 and N66001-00-1-8920. The U.S. Government is authorized to reproduce and distribute reprints for governmental purposes notwithstanding any copyright annotation thereon. This research is partially supported by grants from DARPA (F30602-99-1-0517, N66001-00-1-8920), NSF (CCR-9988204) and Microsoft, and is a joint research effort between Arizona State University and New York University.
Publisher Copyright:
© 2001 IEEE.
PY - 2001
Y1 - 2001
N2 - When two (or more) entities (or members) enter into a coalition, they agree to share information, resources and other assets according to some set of negotiated rules. This paper addresses the issue of controlled and secure information sharing. Each member may have a large number of agents (people) who run programs that access information from the large number of servers run by the other member. The problem arises in managing the authentication and the access control at these service points. The issues are technical, as well as administrative. Compounding the problem is the large number of autonomous information servers that contain the information published by a single member. Administering and securing these is in reality intractable. We present a solution to the secure information-sharing problem, by separating the authentication function from the data access function. Then, by having only one authenticator per member and the use of digital certificates we show how a multiplicity of information sources can be managed and secured.
AB - When two (or more) entities (or members) enter into a coalition, they agree to share information, resources and other assets according to some set of negotiated rules. This paper addresses the issue of controlled and secure information sharing. Each member may have a large number of agents (people) who run programs that access information from the large number of servers run by the other member. The problem arises in managing the authentication and the access control at these service points. The issues are technical, as well as administrative. Compounding the problem is the large number of autonomous information servers that contain the information published by a single member. Administering and securing these is in reality intractable. We present a solution to the secure information-sharing problem, by separating the authentication function from the data access function. Then, by having only one authenticator per member and the use of digital certificates we show how a multiplicity of information sources can be managed and secured.
UR - http://www.scopus.com/inward/record.url?scp=84964556790&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84964556790&partnerID=8YFLogxK
U2 - 10.1109/DISCEX.2001.932155
DO - 10.1109/DISCEX.2001.932155
M3 - Conference contribution
AN - SCOPUS:84964556790
T3 - Proceedings - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
SP - 3
EP - 11
BT - Proceedings - DARPA Information Survivability Conference and Exposition II, DISCEX 2001
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 12 June 2001 through 14 June 2001
ER -