{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,25]],"date-time":"2026-02-25T15:13:23Z","timestamp":1772032403470,"version":"3.50.1"},"reference-count":37,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2007,5,1]],"date-time":"2007-05-01T00:00:00Z","timestamp":1177977600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Internet Technol."],"published-print":{"date-parts":[[2007,5]]},"abstract":"<jats:p>Maximizing local autonomy by delegating functionality to end nodes when possible (the end-to-end design principle) has led to a scalable Internet. Scalability and the capacity for distributed control have unfortunately not extended well to resource access-control policies and mechanisms. Yet management of security is becoming an increasingly challenging problem in no small part due to scaling up of measures such as number of users, protocols, applications, network elements, topological constraints, and functionality expectations.<\/jats:p>\n          <jats:p>In this article, we discuss scalability challenges for traditional access-control mechanisms at the architectural level and present a set of fundamental requirements for authorization services in large-scale networks. We show why existing mechanisms fail to meet these requirements and investigate the current design options for a scalable access-control architecture.<\/jats:p>\n          <jats:p>We argue that the key design options to achieve scalability are the choice of the representation of access control policy, the distribution mechanism for policy, and the choice of the access-rights revocation scheme. Although these ideas have been considered in the past, current access-control systems in use continue to use simpler but restrictive architectural models. With this article, we hope to influence the design of future access-control systems towards more decentralized and scalable mechanisms.<\/jats:p>","DOI":"10.1145\/1239971.1239972","type":"journal-article","created":{"date-parts":[[2007,6,6]],"date-time":"2007-06-06T14:37:11Z","timestamp":1181140631000},"page":"8","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":18,"title":["Requirements for scalable access control and security management architectures"],"prefix":"10.1145","volume":"7","author":[{"given":"Angelos D.","family":"Keromytis","sequence":"first","affiliation":[{"name":"Columbia University, New York, NY"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jonathan M.","family":"Smith","sequence":"additional","affiliation":[{"name":"University of Pennsylvania, Philadelphia, PA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2007,5]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"Proceedings of the 1999 IEEE Symposium on Security and Privacy. 17--31","author":"Bartal Y.","unstructured":"Bartal , Y. , Mayer , A. , Nissim , K. , and Wool , A . 1999. Firmato: A novel firewall management toolkit . In Proceedings of the 1999 IEEE Symposium on Security and Privacy. 17--31 . Bartal, Y., Mayer, A., Nissim, K., and Wool, A. 1999. Firmato: A novel firewall management toolkit. In Proceedings of the 1999 IEEE Symposium on Security and Privacy. 17--31."},{"key":"e_1_2_1_2_1","unstructured":"Bellovin S. M. 1999. Distributed Firewalls. ;login: The USENIX Magazine (Special Issue on Security).  Bellovin S. M. 1999. Distributed Firewalls. ;login: The USENIX Magazine (Special Issue on Security)."},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/1065545.1065547"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/352600.352623"},{"key":"e_1_2_1_5_1","doi-asserted-by":"crossref","unstructured":"Boyle J. Cohen R. Durham D. Herzog S. Rajan R. and Sastry A. 2000. The COPS (Common Open Policy Service) Protocol. Request for comments (proposed standard) Internet Engineering Task Force.  Boyle J. Cohen R. Durham D. Herzog S. Rajan R. and Sastry A. 2000. The COPS (Common Open Policy Service) Protocol. Request for comments (proposed standard) Internet Engineering Task Force.","DOI":"10.17487\/rfc2748"},{"key":"e_1_2_1_6_1","doi-asserted-by":"crossref","unstructured":"Bull J. Gong L. and Sollins K. 1992. Towards security in an open systems Federation. In Lecture Notes in Computer Science. vol. 648. Springer-Verlag 3--20.   Bull J. Gong L. and Sollins K. 1992. Towards security in an open systems Federation. In Lecture Notes in Computer Science. vol. 648. Springer-Verlag 3--20.","DOI":"10.1007\/BFb0013889"},{"key":"e_1_2_1_7_1","unstructured":"Calhoun P. Rubens A. Akhtar H. and Guttman E. 1999. DIAMETER Base Protocol. Internet Draft Internet Engineering Task Force.   Calhoun P. Rubens A. Akhtar H. and Guttman E. 1999. DIAMETER Base Protocol. Internet Draft Internet Engineering Task Force."},{"key":"e_1_2_1_8_1","unstructured":"Chinitz J. and Sonnenberg S. 1996. A transparent security framework for TCP\/IP and Legacy applications. Tech. rep. Intellisoft Corp.  Chinitz J. and Sonnenberg S. 1996. A transparent security framework for TCP\/IP and Legacy applications. Tech. rep. Intellisoft Corp."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1145\/52324.52336"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/775412.775415"},{"key":"e_1_2_1_12_1","unstructured":"Ferraiolo D. F. Kuhn D. R. and Chandramouli R. 2003. Role Based Access Control. Artech House.   Ferraiolo D. F. Kuhn D. R. and Chandramouli R. 2003. Role Based Access Control. Artech House."},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/501978.501980"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.5555\/882493.884383"},{"key":"e_1_2_1_15_1","volume-title":"Proceedings of the 15th Annual Computer Security Applications Conference (ACSAC).","author":"Hale J.","unstructured":"Hale , J. , Galiasso , P. , Papa , M. , and Shenoi , S . 1999. Security policy coordination for heterogeneous information systems . In Proceedings of the 15th Annual Computer Security Applications Conference (ACSAC). Hale, J., Galiasso, P., Papa, M., and Shenoi, S. 1999. Security policy coordination for heterogeneous information systems. In Proceedings of the 15th Annual Computer Security Applications Conference (ACSAC)."},{"key":"e_1_2_1_16_1","volume-title":"IEEE Symposium on Security and Privacy","author":"Hayton R.","unstructured":"Hayton , R. , Bacon , J. , and Moody , K . 1998. Access control in an open distributed environment . In IEEE Symposium on Security and Privacy , Oakland, CA. Hayton, R., Bacon, J., and Moody, K. 1998. Access control in an open distributed environment. In IEEE Symposium on Security and Privacy, Oakland, CA."},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.5555\/784590.784712"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1145\/352600.353052"},{"key":"e_1_2_1_20_1","unstructured":"Keromytis A. D. 2001. Strongman: A scalable solution to trust management in networks. Ph.D. thesis University of Pennsylvania Philadelphia PA.   Keromytis A. D. 2001. Strongman: A scalable solution to trust management in networks. Ph.D. thesis University of Pennsylvania Philadelphia PA."},{"key":"e_1_2_1_21_1","volume-title":"Proceedings of the 3rd DARPA Information Survivability Conference and Exposition (DISCEX III). 178--188","author":"Keromytis A. D.","unstructured":"Keromytis , A. D. , Ioannidis , S. , Greenwald , M. B. , and Smith , J. M . 2003. The STRONGMAN architecture . In Proceedings of the 3rd DARPA Information Survivability Conference and Exposition (DISCEX III). 178--188 . Keromytis, A. D., Ioannidis, S., Greenwald, M. B., and Smith, J. M. 2003. The STRONGMAN architecture. In Proceedings of the 3rd DARPA Information Survivability Conference and Exposition (DISCEX III). 178--188."},{"key":"e_1_2_1_22_1","volume-title":"Protection. In Proceedings of the 5th Princeton Symposium on Information Sciences and Systems. 473--443","author":"Lampson B.","year":"1971","unstructured":"Lampson , B. 1971 . Protection. In Proceedings of the 5th Princeton Symposium on Information Sciences and Systems. 473--443 . Lampson, B. 1971. Protection. In Proceedings of the 5th Princeton Symposium on Information Sciences and Systems. 473--443."},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/775265.775268"},{"key":"e_1_2_1_24_1","unstructured":"Miller S. P. Neuman B. C. Schiller J. I. and Saltzer J. H. 1987. Kerberos authentication and authorization system. Tech. rep. MIT.  Miller S. P. Neuman B. C. Schiller J. I. and Saltzer J. H. 1987. Kerberos authentication and authorization system. Tech. rep. MIT."},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.5555\/1267591.1267602"},{"key":"e_1_2_1_26_1","unstructured":"Network Wizards. Internet Domain Survey. http:\/\/www.isc.org\/ds.  Network Wizards. Internet Domain Survey. http:\/\/www.isc.org\/ds."},{"key":"e_1_2_1_27_1","unstructured":"RFC\n   Editor. RFCs issued by year. http:\/\/www.rfceditor.org\/num_rfc_year.html.  RFC Editor. RFCs issued by year. http:\/\/www.rfceditor.org\/num_rfc_year.html."},{"key":"e_1_2_1_28_1","doi-asserted-by":"crossref","unstructured":"Rigney C. Rubens A. Simpson W. and Willens S. 1997. Remote Authentication Dial In User Service (RADIUS). Request for Comments (Proposed Standard) 2138 Internet Engineering Task Force.   Rigney C. Rubens A. Simpson W. and Willens S. 1997. Remote Authentication Dial In User Service (RADIUS). Request for Comments (Proposed Standard) 2138 Internet Engineering Task Force.","DOI":"10.17487\/rfc2058"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/357401.357402"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1109\/2.485845"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/286884.286887"},{"key":"e_1_2_1_32_1","unstructured":"Telcordia Technologies. Evaluating the size of the Internet. http:\/\/www.netsizer.com\/.  Telcordia Technologies. Evaluating the size of the Internet. http:\/\/www.netsizer.com\/."},{"key":"e_1_2_1_33_1","volume-title":"Proceedings of the 14th Annual Computer Security Applications Conference.","author":"Thomsen D.","unstructured":"Thomsen , D. , O'Brien , D. , and Bogle , J . 1998. Role based access control framework for network enterprises . In Proceedings of the 14th Annual Computer Security Applications Conference. Thomsen, D., O'Brien, D., and Bogle, J. 1998. Role based access control framework for network enterprises. In Proceedings of the 14th Annual Computer Security Applications Conference."},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1145\/319171.319185"},{"key":"e_1_2_1_35_1","volume-title":"Proceedings of the Network and Distributed System Security Symposium (SNDSS). 109--124","author":"Trostle J.","unstructured":"Trostle , J. , Kosinovsky , I. , and Swift , M. M . 2001. Implementation of crossrealm referral handling in the MIT Kerberos client . In Proceedings of the Network and Distributed System Security Symposium (SNDSS). 109--124 . Trostle, J., Kosinovsky, I., and Swift, M. M. 2001. Implementation of crossrealm referral handling in the MIT Kerberos client. In Proceedings of the Network and Distributed System Security Symposium (SNDSS). 109--124."},{"key":"e_1_2_1_36_1","volume-title":"IEEE 8th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE'99)","author":"Vandenwauver M.","unstructured":"Vandenwauver , M. , Claessens , J. , Moreau , W. , Vaduva , C. , and Maier , R . 1999. Why enterprises need more than firewalls and intrusion detection systems . In IEEE 8th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE'99) . Stanford, CA. IEEE Computer Society, 152--7. Vandenwauver, M., Claessens, J., Moreau, W., Vaduva, C., and Maier, R. 1999. Why enterprises need more than firewalls and intrusion detection systems. In IEEE 8th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE'99). Stanford, CA. IEEE Computer Society, 152--7."},{"key":"e_1_2_1_37_1","volume-title":"Proceedings of the USENIX Annual Technical Conference, Freenix Track. 267--272","author":"Westerlund A.","unstructured":"Westerlund , A. and Danielsson , J . 2001. Heimdal and Windows 2000 Kerberos---How to get them to play together . In Proceedings of the USENIX Annual Technical Conference, Freenix Track. 267--272 . Westerlund, A. and Danielsson, J. 2001. Heimdal and Windows 2000 Kerberos---How to get them to play together. In Proceedings of the USENIX Annual Technical Conference, Freenix Track. 267--272."},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1145\/174613.174614"},{"key":"e_1_2_1_39_1","volume-title":"Proceedings of the 10th USENIX Security Symposium. 85--97","author":"Wool A.","year":"2001","unstructured":"Wool , A. 2001 . Architecting the Lumeta firewall analyzer . In Proceedings of the 10th USENIX Security Symposium. 85--97 . Wool, A. 2001. Architecting the Lumeta firewall analyzer. In Proceedings of the 10th USENIX Security Symposium. 85--97."}],"container-title":["ACM Transactions on Internet Technology"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1239971.1239972","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1239971.1239972","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T14:52:08Z","timestamp":1750258328000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1239971.1239972"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007,5]]},"references-count":37,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2007,5]]}},"alternative-id":["10.1145\/1239971.1239972"],"URL":"https:\/\/doi.org\/10.1145\/1239971.1239972","relation":{},"ISSN":["1533-5399","1557-6051"],"issn-type":[{"value":"1533-5399","type":"print"},{"value":"1557-6051","type":"electronic"}],"subject":[],"published":{"date-parts":[[2007,5]]},"assertion":[{"value":"2007-05-01","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}