Subject Specification in Access Control Lists for Hierarchical Organizations

A. Bottoni and G. Dini (Italy)


Network Security, Information Systems, ACL, PKI.


In a framework with multiple organizations, that may also be part of a virtual organization, the access control lists can grow in size and complexity, thus becoming difficult to manage. With reference to hierarchical organizations, in this paper we propose a methodology for specifying the subjects in ACLs. The methodology is aimed at obtaining ACLs that are well suited to virtual organizations and yet are simple, flexible and resistant to changes inside the or ganizations.

Important Links:

Go Back