Using attribute-based access control to enable attribute-based messaging

Rakesh Bobba, Omid Fatemieh, Fariba Khan, Carl A. Gunter, Himanshu Khurana

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Attribute Based Messaging (ABM) enables message senders to dynamically create a list of recipients based on their attributes as inferred from an enterprise database. Such targeted messaging can reduce unnecessary communications and enhance privacy, but faces challenges in access control. In this paper we explore an approach to ABM based on deriving access control information from the same attribute database exploited by the addressing scheme. We show how to address three key challenges. First, we demonstrate a manageable access control system based on attributes. Second we show how this can be used with existing messaging systems to provide a practical deployment strategy. Third, we show that such a system can be efficient enough to support ABM for mid-size enterprises. Our implementation can dispatch ABM messages approved by XACML review for an enterprise of at least 60,000 users with only seconds of latency.

Original languageEnglish (US)
Title of host publicationProceedings - Annual Computer Security Applications Conference, ACSAC
Pages403-413
Number of pages11
DOIs
StatePublished - 2006
Event22nd Annual Computer Security Applications Conference, ACSAC 2006 - Miami Beach, FL, United States
Duration: Dec 11 2006Dec 15 2006

Publication series

NameProceedings - Annual Computer Security Applications Conference, ACSAC
ISSN (Print)1063-9527

Other

Other22nd Annual Computer Security Applications Conference, ACSAC 2006
Country/TerritoryUnited States
CityMiami Beach, FL
Period12/11/0612/15/06

ASJC Scopus subject areas

  • Software
  • Engineering(all)

Fingerprint

Dive into the research topics of 'Using attribute-based access control to enable attribute-based messaging'. Together they form a unique fingerprint.

Cite this