Abstract
PMES provides privilege management and enforcement methods for end user access to distributed mass storage data and information via the Global Internet using X-windows interfaces, and supporting authentication and encryption. It permits anyone owning or managing a resource (not only a system administrator) to control fine-grained privileges on a variety of networked resources. The system consists of a Java-based privilege management interface, a server which stores privilege information, and an enforcement system. In this paper, we describe the system, emphasizing the the implementation of the management interface, the server, and the interaction of the two.
Chapter PDF
References
Burati, M. and Pato, J. (1996). RFC 91.0: User-to-User Authentication — Functional Specification. January, 1996.
Diffie, W. and Hellman, M.E. (1976). New Directions in Cryptography. IEEE Trans. Informations Theory, Vol. IT-22, pp. 644–54.
Kohl, J. and Neuman, C. (1993). RFC 1510: The Kerberos Network Authentication Service (V5).
Mullan, S. (1996). RFC 92.0: DCE Interoperability with Kerberos. January, 1996.
Maly, K.J., Gupta A., Kvande, B., Levinstein, I.B., Mukkamala, R., and Olson, M. (1996). A Privilege Management System For A Secure Network. To appear in Proc. Third In-ternational Workshop on Services in Distributed and Networked Environments (SDNE ‘86), 3–4 June 1996, Macau.
Maly, K.J., Gupta A., Kvande, B., Levinstein, I.B., Mukkamala, R., Nanjangud, S., and Olson, M. (1996). A Privilege Management And Enforcement System For Distributed Resource Sharing. To appear in Proc. International Workshop on Enterprise Security, June 19–21, Stanford University, California.
Needham, R.M. and Schroeder, M.D. (1978). Using encryption for authentication in large networks of computers. Communications of ACM, vol. 21, pp. 993–9, 1978.
Neuman, C., and Ts’o, T. (1994). Kerberos: An Authentication Service for Computer Networks. IEEE Communications, Vol. 32, No. 9, September 1994
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1996 Springer Science+Business Media Dordrecht
About this chapter
Cite this chapter
Maly, K.J. et al. (1996). PMES: Privilege management and enforcement system for secure distributed resource sharing. In: Terashima, N., Altman, E. (eds) Advanced IT Tools. IFIP — The International Federation for Information Processing. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-34979-4_39
Download citation
DOI: https://doi.org/10.1007/978-0-387-34979-4_39
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-4416-3
Online ISBN: 978-0-387-34979-4
eBook Packages: Springer Book Archive