MITRE
 
About Us Our Work Employment News & Events
MITRE Remote Access for MITRE Employees Site Map
Overview
Acquisition and Systems Analysis
Airspace Development, Safety, Security
Command and Control
Cybersecurity
Emerging Technologies
Enterprise Systems Engineering
Global Networking
Healthcare Transformation
Homeland Security
Intelligence, Surveillance, Reconnaissance
Large-Scale Enterprise Transformation
MITRE Research Program
Technology Transfer Office
Technical Papers
Home > Our Work > Technical Papers >

Coordinating Desired Accessibility versus Desired Restrictions in Distributed Object Systems

December 2000

Arnon Rosenthal, The MITRE Corporation

ABSTRACT

This work aims to provide administrators with services for managing permissions in a distributed object system, by connecting business-level tasks to access controls on low level functions. Specifically, the techniques connect abilities (to complete externally-invoked functions) to the access controls on individual functions, across all servers. Our main results are the problem formalization, plus algorithms to synthesize "least privilege" permissions for a given set of desired abilities. Desirable extensions and numerous research issues are identified.

» Download Article [PDF, 112KB]

Additional Search Keywords

Access controls, distributed object management, security, business tasks.

 

Page last updated: Januray 25, 2001   |   Top of page

Homeland Security Center Center for Enterprise Modernization Command, Control, Communications and Intelligence Center Center for Advanced Aviation System Development

 
 
 

Serving as Architects of Information Advantage.™
Copyright © 1997-2008, The MITRE Corporation. All rights reserved.
MITRE is a registered trademark of The MITRE Corporation.
Material on this site may be copied and distributed with permission only.
 

Privacy Policy | Contact Us

Boston Business Journal Best Places to Work 2007 Computerworld Best Places to Work in IT 2005-2007 Fortune 100 Best Places to Work 2002-2008