P2P-Role: Uma Arquitetura de Controle de Acesso Baseada em Papéis para Sistemas Colaborativos Peer-to-Peer
Abstract
The collaborative Peer-to-Peer systems are distributed systems where each user acts as a client and server of resources. The discovery, representation and protection of these resources are the main challenges in Peer-to-Peer networks. This paper defines a role-based access control architecture (RBAC) specific to Peer-to-Peer systems and in this way, contributes to fortify the security of these type of models. The prototype implemented validates the model and provides manners for security policy management of resources in each node of Peer-to-Peer network.
References
Alfred W. Loo (2003). The Future of Peer-to-Peer Computing. Communications of ACM, 46(9):57–61.
Carl E. Landwehr (2001). Computer security. International Journal of Information Security, 1(1):3–13.
Djamel Sadok (2003). Computacao Colaborativa (P2P). Grupo de Trabalho da Rede Nacional de Pesquisa. Disponível em http://www.rnp.br/arquivo/gt/2003/p2p.pdf.
Domenico Talia e Paolo Trunfio (2003). Toward a Synergy Between P2P and Grids. IEEE Internet Computing, July/August 2003 issue:94–96.
Elisa Bertino (2003). RBAC Models – Concepts and Trends. Computer and Security, 22(6):511–514.
Hari Balakrishnan e David Karger e Robert Morris (2003). Looking Up Data in P2P Systems. Communications of ACM, 46(2):43–48.
Luca Caviglione (2004). The “Dark Side” and The “Force” Of The Peer-to-Peer Computing Saga. Peer-to-Peer Journal, 1(4):1–11. http://www.p2pjournal.com.
Marinho Barcelos (2002). Programacao paralela e distribuída em java. In: Escola Regional de Alto Desempenho ERAD, pages 179–181. ISBN: 8588442167, Sao Leopoldo, RS.
Mike Surridge e Colin Upstill (2003). Grid Security: Lessons for Peer-to-Peer Systems. In: Proceedings of the Third International Conference on Peer-to-Peer Computing (P2P’03), pages 2–7. Linkoping, Sweden.
Neil Daswani e Hector Garcia-Molina (2003). Open Problems in Data-Sharing Peer-toPeer Systems. In: 9th International Conference on Database Theory (ICDT 2003), pages 1–15. Siena, Italy.
Pascal Fenkam e Schahram Dustdar e Engin Kirda (2002). Towards an Access Control System for Mobile Peer-to-Peer Collaborative Environments. In: Proceedings of Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE’02), pages 95–100.
Philip E. Agre (2003). P2P and the Promise of Internet Equality. Communications of the ACM, 46(2):39–42.
Sabrina Vimercati e Stefano Paraboschi e Pierangela Samarati (2003). Access control: principles and solutions. Software —Practice & Experience, 33(5):397–421. ISSN:0038-0644.
Sergio Marti e Hector Garcia-Molina (2003). Identity Crisis: Anonymity vs. Reputation in P2P Systems. In: Proceedings of the Third International Conference on Peer-toPeer Computing (P2P’03), pages 134–141.
William Yeager e Joseph Williams (2002). Secure Peer-to-Peer Networking: The JXTA Example. IEEE IT Professional, 4(2):53–57.
Wooyoung Kim e Sven Graupner e Akhil Sahai (2002). A secure platform for peer-topeer computing in the internet. Technical Report HPL-2001-324, Hewlett Packard Laboratories. http://www.hpl.hp.com/techreports/2001/HPL-2001-324.pdf.
Carl E. Landwehr (2001). Computer security. International Journal of Information Security, 1(1):3–13.
Djamel Sadok (2003). Computacao Colaborativa (P2P). Grupo de Trabalho da Rede Nacional de Pesquisa. Disponível em http://www.rnp.br/arquivo/gt/2003/p2p.pdf.
Domenico Talia e Paolo Trunfio (2003). Toward a Synergy Between P2P and Grids. IEEE Internet Computing, July/August 2003 issue:94–96.
Elisa Bertino (2003). RBAC Models – Concepts and Trends. Computer and Security, 22(6):511–514.
Hari Balakrishnan e David Karger e Robert Morris (2003). Looking Up Data in P2P Systems. Communications of ACM, 46(2):43–48.
Luca Caviglione (2004). The “Dark Side” and The “Force” Of The Peer-to-Peer Computing Saga. Peer-to-Peer Journal, 1(4):1–11. http://www.p2pjournal.com.
Marinho Barcelos (2002). Programacao paralela e distribuída em java. In: Escola Regional de Alto Desempenho ERAD, pages 179–181. ISBN: 8588442167, Sao Leopoldo, RS.
Mike Surridge e Colin Upstill (2003). Grid Security: Lessons for Peer-to-Peer Systems. In: Proceedings of the Third International Conference on Peer-to-Peer Computing (P2P’03), pages 2–7. Linkoping, Sweden.
Neil Daswani e Hector Garcia-Molina (2003). Open Problems in Data-Sharing Peer-toPeer Systems. In: 9th International Conference on Database Theory (ICDT 2003), pages 1–15. Siena, Italy.
Pascal Fenkam e Schahram Dustdar e Engin Kirda (2002). Towards an Access Control System for Mobile Peer-to-Peer Collaborative Environments. In: Proceedings of Eleventh IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WETICE’02), pages 95–100.
Philip E. Agre (2003). P2P and the Promise of Internet Equality. Communications of the ACM, 46(2):39–42.
Sabrina Vimercati e Stefano Paraboschi e Pierangela Samarati (2003). Access control: principles and solutions. Software —Practice & Experience, 33(5):397–421. ISSN:0038-0644.
Sergio Marti e Hector Garcia-Molina (2003). Identity Crisis: Anonymity vs. Reputation in P2P Systems. In: Proceedings of the Third International Conference on Peer-toPeer Computing (P2P’03), pages 134–141.
William Yeager e Joseph Williams (2002). Secure Peer-to-Peer Networking: The JXTA Example. IEEE IT Professional, 4(2):53–57.
Wooyoung Kim e Sven Graupner e Akhil Sahai (2002). A secure platform for peer-topeer computing in the internet. Technical Report HPL-2001-324, Hewlett Packard Laboratories. http://www.hpl.hp.com/techreports/2001/HPL-2001-324.pdf.
Published
2004-05-10
How to Cite
RIGHI, Rafael da Rosa; PELLISSARI, Felipe Rolim; WESTPHALL, Carla Merkle.
P2P-Role: Uma Arquitetura de Controle de Acesso Baseada em Papéis para Sistemas Colaborativos Peer-to-Peer. In: BRAZILIAN SYMPOSIUM ON INFORMATION AND COMPUTATIONAL SYSTEMS SECURITY (SBSEG), 4. , 2004, Gramado.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2004
.
p. 24-35.
DOI: https://doi.org/10.5753/sbseg.2004.21223.
