A Flexible Access Control Model for Distributed Collaborative Editors

Abdessamad Imine 1 Asma Cherif 1 Michael Rusinowitch 1
1 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : Distributed Collaborative Editors (DCE) provide computer support for modifying simultaneously shared documents, such as articles, wiki pages and programming source code, by dispersed users. Controlling access in such systems is still a challenging problem, as they need dynamic access changes and low latency access to shared documents. In this paper, we propose a flexible access control model where the shared document and its authorization policy are replicated at the local memory of each user. To deal with latency and dynamic access changes, we use an optimistic access control technique in such a way that enforcement of authorizations is retroactive. We show that naive coordination between updates of both copies can create security holes on the shared document, by permitting illegal modifications or rejecting legal modifications. Finally, we present a prototype for managing authorizations in collaborative editing work which may be deployed easily on P2P networks.
Complete list of metadatas

https://hal.inria.fr/inria-00431341
Contributor : Abdessamad Imine <>
Submitted on : Thursday, November 12, 2009 - 10:04:50 AM
Last modification on : Friday, July 6, 2018 - 3:06:10 PM

Links full text

Identifiers

Citation

Abdessamad Imine, Asma Cherif, Michael Rusinowitch. A Flexible Access Control Model for Distributed Collaborative Editors. 6th VLDB Workshop on Secure Data Management - SDM 2009, Aug 2009, Lyon, France. pp.89-106, ⟨10.1007/978-3-642-04219-5_6⟩. ⟨inria-00431341⟩

Share

Metrics

Record views

383