Unifying Access and Resource Usage Control Over Standard Client-Server Interactions
The authors propose a novel framework for integrated access and resource usage control over standard client-server interactions. Historically, access control has been developed without considering resource usage. Resource control has thus developed as an ad hoc server-centric set of mechanisms (e.g., file system quota, network bandwidth quote, etc.). They believe that resource usage control is strongly related to access control and so should be implemented using a unified, global enforcement framework. They introduce such a framework, where services have resource usage constraints and principals have resource usage histories. To access and use a service, a principal must have the appropriate access and sufficient resource usage rights when considering its usage history.