Distributed usage control

Alexander Pretschner, Manuel Hilty, David Basin

Research output: Contribution to journalReview articlepeer-review

198 Scopus citations

Abstract

A server-side architecture is used to connect specialized enforcement mechanisms with distributed usage control requirements and policies. The fundamentals of usage control in the notions of provisions, obligations, and compensations in the context of controllability and observability are discussed. The given architecture is compatible with different client-side software enforcement mechanisms including trusted platform technologies and other digital rights management (DRM) mechanisms. Trusted platform technology can be used as a mechanism to control obligations. The high-level policies specifies obligations and provisions that encompasses access control requirement and provisional actions. A compensation management component is used to monitor the obligations to find whether they are violated and thereby necessary actions could be taken for its prevention. The data object is modified in the controllable obligations to enable the trusted systems handle the respective requirements.

Original languageEnglish
Pages (from-to)39-44
Number of pages6
JournalCommunications of the ACM
Volume49
Issue number9
DOIs
StatePublished - 2006
Externally publishedYes

Fingerprint

Dive into the research topics of 'Distributed usage control'. Together they form a unique fingerprint.

Cite this