@TechReport{,
  author = 	 {Luis Espinal and Konstantin Beznosov and Yi Deng},
  title = 	 {Design and Implementation of Resource Access Decision Server},
  institution =  {Center for Advanced Distributed Systems Engineering (CADSE)},
  year = 	 {2000},
  type =	 {Technical Report},
  number =	 {2000-01},
  address =	 {School of Computer Science, Florida International University, University Park, Miami, FL 33199},
  month =	 {jan},
  url = 	 {http://cadse.cs.fiu.edu/research_projects/research3/publications/},
  abstract = 	 {Decoupling authorization decision logic enables implementation of complex and consistent access control policies across heterogeneous systems. However, this is difficult, if not impossible to implement by exclusively using general-purpose infrastructures such as CORBA Security Service. In response to this limitation of CORBA Security service the Object Management Group (OMG) has adopted a Resource Access Decision (RAD) Facility, an authorization service for distributed systems, as a pre-final standard. By using RAD facility, developers can implement systems with authorization logic decoupled from application-specific logic and decentralized evaluation and administration of the access policies.
This report documents the design and implementation of a Resource Access Decision (RAD) facility. The report covers the different components that comprise a RAD system, their designs, functions and interdependencies. The RAD prototype allows studying the validity of the framework and conduction of experiments in the research of distributed access control. Since the design of the prototype is heavily influenced by design patterns, the prototype can easily be maintained and augmented with more complex access control mechanisms.}
}