An Initial Investigation of Privilege Management Infrastructure

PDF

Authors
  1. Magar, A.
Corporate Authors
Defence R&D Canada - Ottawa, Ottawa ONT (CAN);Magar Security Architecture Inc, Ottawa ONT (CAN)
Abstract
This report reviews the current state of development of Privilege Management Infrastructure (PMI) technology for managing access control. It covers standards, architecture, implementation approaches and products, and the direction of future evolution insofar as it can be determined. The report also explores the relationship between Public Key Infrastructure (PKI) technology and PMI technology. The report finds that the attribute certificate approach is the least mature of the implementation approaches, while the use of access control or provisioning agents is also a promising and currently a more mature technology.
Keywords
Access control;Access management;Authentication;Multi-level security;Public Key Infrastructure;Provisioning;Privilege Management Infrastructure;Attribute certificates;Authorization;Caveat separation;Identity management
Report Number
DRDC-OTTAWA-CR-2002-058 — Contractor Report (Final)
Date of publication
01 Mar 2001
Number of Pages
57
DSTKIM No
CA021339
CANDIS No
518080
Format(s):
Hardcopy;Document Image stored on Optical Disk

Permanent link

Document 1 of 1

Date modified: