Author(s)
  Estrin, Deborah.

Source
  IEEE Transactions on Software Engineering Feb 1987, vSE-13n2, p. 249-261 (13 pages)

Abstract:
  Interorganization computer networks support person-to-person communication via: 1. electronic mail, 2. exchange of computer-aided design and computer-aided manufacturing data, software modules, or documents through file transfer, 3. input to an order-entry or accounting system via a database query and update protocol, and 4. use of shared computational resources via an asynchronous message protocol or remote login. Because of most firms' desire for limited access of resources to outsiders, interorganization networks (ION) have unique usage-control requirements. A conceptual model for implementing usage control in IONs is described. First, usage control requirements in networks that cross organization boundaries are discussed. The analysis indicates that category sets and nondiscretionary control mechanisms can be employed to isolate strictly internal facilities from ION facilities and distinct IONs from one another. Attention is then focused on the problem of authentification in IONs -- an essential component of the proposed control mechanisms.