An access control service for dynamic and hierarchical resources: Declarative model and implementation on top of XACML

The increasing complexity of (distributed) information systems requires new solutions for dealing with access control problems. In particular, information systems are based on a large number of resources, with very complex structure, that must be accessed by a large variety of users. Traditional and instance based solutions are not adequate. In this paper, we propose a new approach to the problem. First of all, we define an access control model which is declarative, modular, hierarchical and instance independent, so that it is suitable for highly dynamic contexts. Then, we reports about the implementation of a Profile Service, which effectively exploits the XACML technology to simplify and shorten the development.

Psaila, Giuseppe; Biondi, Fulvio (2004): An access control service for dynamic and hierarchical resources: Declarative model and implementation on top of XACML. Information systems technology and its applications, 3rd international conference ISTA'2004. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 3-88579-377-6. pp. 93-106. Regular Research Papers. Salt Lake City, Utah, USA. June 15-17, 2004

Sammlungen

P048 - ISTA 2004 - Information Systems Technology and its Applications

Komplettanzeige

An access control service for dynamic and hierarchical resources: Declarative model and implementation on top of XACML

Volltext URI

Dokumententyp

Dateien

Zusatzinformation

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen