Referenced Items are not available for this document.
Attribute Based Access Control can define permissions based on just about any security relevant characteristics of requestors, actions, resources, and environment, known as attributes. XACML is an access control OASIS standard compliant to this approach. Although XACML seems to allow the specification and enforcement of any access control policy, current tools can require modifying the source code of the authorization decision system when policy includes non-standard information. In this article, we present an XACML authorization web service that can be extended when needed. It is composed of a core element implementing OASIS standard and additional modules for new security information. We apply this approach to dynamic web sites access control management.
Published in:
Signal-Image Technology & Internet-Based Systems (SITIS), 2009 Fifth International Conference on
Date of Conference: Nov. 29 2009-Dec. 4 2009
- Page(s):
- 499 - 505
- E-ISBN :
- 978-0-7695-3959-1
- Print ISBN:
- 978-1-4244-5740-3
- INSPEC Accession Number:
- 11641986
- Conference Location :
- Marrakesh
- Digital Object Identifier :
- 10.1109/SITIS.2009.83
- Product Type:
- Conference Publications
About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies
A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.
