Access control in decentralized, distributed systems

dc.contributor.advisorBrowne, James C.en
dc.creatorKane, Kevin Michaelen
dc.date.accessioned2008-08-28T23:14:50Zen
dc.date.available2008-08-28T23:14:50Zen
dc.date.issued2006en
dc.description.abstractDistributed systems with decentralized control, such as peer-to-peer systems, computing grids across multiple organizations, and compositional web services require a rethinking of basic issues in their design and implementation. This dissertation establishes a model of these systems, examines the issues of programming models, access control, and trust, and proposes and evaluates new methods for implementing access control and trust management in these systems. We begin by abstracting these systems into the model of service-oriented systems that use associative interactions. It then examines the fundamental issues of access control in decentralized systems, and its greater requirements than in systems with central control. From this analysis we identify possible solutions for access control implementations that have not been explored. We then introduce a framework developed to support computation in these kinds of networks, and then together with the lessons learned from the taxonomy, offer and evaluate contractually-limited capabilities as an access control mechanism. We then address the questions of trust, cooperation, and access control decisions by offering and evaluating a reputation-tracking mechanism that incorporates a quantified measure of uncertainty, realizing that intrinsic to any system with decentralized control is the uncertainty of information arising from incomplete state. We show this mechanism promotes cooperation by throttling uncooperative nodes while providing high levels of service to cooperative nodes. We then further examine the question of reliability of these networks by introducing a logic for verifying access control properties. This logic unifies a logic of belief with temporal logic, and establishes formal models of these systems that can then be proven to possess desirable properties.
dc.description.departmentComputer Sciencesen
dc.format.mediumelectronicen
dc.identifierb68632071en
dc.identifier.oclc166152107en
dc.identifier.urihttp://hdl.handle.net/2152/2895en
dc.language.isoengen
dc.rightsCopyright is held by the author. Presentation of this material on the Libraries' web site by University Libraries, The University of Texas at Austin was made possible under a limited license grant from the author who has retained all copyrights in the works.en
dc.subject.lcshComputer networks--Access controlen
dc.titleAccess control in decentralized, distributed systemsen
dc.type.genreThesisen
thesis.degree.departmentComputer Sciencesen
thesis.degree.disciplineComputer Sciencesen
thesis.degree.grantorThe University of Texas at Austinen
thesis.degree.levelDoctoralen
thesis.degree.nameDoctor of Philosophyen

Access full-text files

Original bundle

Now showing 1 - 1 of 1
Loading...
Thumbnail Image
Name:
kanek60698.pdf
Size:
731.52 KB
Format:
Adobe Portable Document Format

License bundle

Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.65 KB
Format:
Plain Text
Description: