Decentralized Access Control in Networked File Systems
University of Pennsylvania Department of Computer and Information Science Technical Report No. MS-CIS-06-02.
The Internet enables global sharing of data across organizational boundaries. Traditional access control mechanisms are intended for one or a small number of machines under common administrative control, and rely on maintaining a centralized database of user identities. They fail to scale to a large user base distributed across multiple organizations. This survey provides a taxonomy of decentralized access control mechanisms intended for large scale, in both administrative domains and users. We identify essential properties of such access control mechanisms. We analyze popular networked file systems in the context of our taxonomy.
Stefan Miltchev, Jonathan M. Smith, Vassilis Prevelakis, Angelos Keromytis, and Sotiris Ioannidis. "Decentralized Access Control in Networked File Systems" Technical Reports (CIS) (2006).
Available at: http://works.bepress.com/jms/38