Sciweavers

DEBS
2007
ACM

Encryption-enforced access control in dynamic multi-domain publish/subscribe networks

14 years 2 months ago
Encryption-enforced access control in dynamic multi-domain publish/subscribe networks
Publish/subscribe systems provide an efficient, event-based, wide-area distributed communications infrastructure. Large scale publish/subscribe systems are likely to employ components of the event transport network owned by cooperating, but independent organisations. As the number of participants in the network increases, security becomes an increasing concern. This paper extends previous work to present and evaluate a secure multi-domain publish/subscribe infrastructure that supports and enforces fine-grained access control over the individual attributes of event types. Key refresh allows us to ensure forward and backward security when event brokers join and leave the network. We demonstrate that the time and space overheads can be minimised by careful consideration of encryption techniques, and by the use of caching to decrease unnecessary decryptions. We show that our approach has a smaller overall communication overhead than existing approaches for achieving the same degree of con...
Lauri I. W. Pesonen, David M. Eyers, Jean Bacon
Added 14 Aug 2010
Updated 14 Aug 2010
Type Conference
Year 2007
Where DEBS
Authors Lauri I. W. Pesonen, David M. Eyers, Jean Bacon
Comments (0)