A network-centric design for relationship-based security and access control

As part of the Stanford Digital Libraries Project, we have prototyped a novel architecture for security and access control in heterogeneous, networked environments. Conceptually, this architecture recasts security issues from an “information access” metaphor into a “relationship management” framework and uniformly applies a contracting model. Architecturally, it introduces a “network-centric” design that generalizes previous models of client- or server-centered control into a third, relationship-based form.