Identity Management and Integrity Protection in Publish-Subscribe Systems
نویسندگان
چکیده
The use of Identity Management (IdM) may leverage the trust in a distributed Publish-Subscribe (PubSub) system. An IdM provides mutual authentication between publishers, subscribers and message routers, enforces access control on message delivery and integrity control of message content. Access control is also a means to reduce traffic in a PubSub network since unauthorized message traffic will not be forwarded. A framework for providing identity management in a generic PubSub systems is presented and analyzed in this paper. The trust in the system relies to some extent on the use of hardware units for the protection of software integrity.
منابع مشابه
Achieving Scalability and Security in Publish-Subscribe Web Services
Scalability in Internet-scale distributed systems can be achieved through the publish-subscribe communication paradigm. In publish-subscribe systems, interacting parties communicate asynchronously, possibly connected at different times and possibly without knowledge of each other’s identity. Though this decoupling promotes scalability, it presents significant challenges to a security model. Sec...
متن کاملIdentity Based Encryption for Securing Publish Subscribe System
We have reachable a new approach to provide authentication and confidentiality in a broker-less content-based publish/subscribe system. Security is highly challenging in this system. In the project, security is provided by adapting the Cipher text policy attribute based encryption. This over all approach provides fine-grained key management and the efficient cost for encryption, decryption, and...
متن کاملAnonymous Publish-Subscribe Systems
Publish-subscribe protocols offer a unique means of data distribution, that has many applications for distributed systems. These protocols enable message delivery based on subscription rather than specific addressing; meaning a message is addressed by a subject string rather than to a specific recipient. Recipients may then subscribe to subjects they are interested in receiving using a variety ...
متن کاملThe Federation of Critical Infrastructure Information via Publish-Subscribe Enabled Multisensor Data Fusion
The art and science of multisensor data fusion is the emerging foundation for the development of next generation network-centric decision support systems, including critical infrastructure protection. These challenging technical objectives require the cooperative signal processing of a federation of critical infrastructures. Publish-subscribe architectures provide process-to-process messaging i...
متن کاملA Security Framework for Distributed Brokering Systems
Loosely coupled, globally scalable distributed systems, including both peer-to-peer systems and computational grids, rely on the transmission of messages and events that may transverse many point-topoint connections and may need to reach several destinations. The identity of entities, the authorization to send or receive certain messages, and the privacy and integrity of those messages must all...
متن کامل