The XACML Standard: addressing architectural and security aspects

The OASIS XACML (eXtensible Access Control Markup Language) standard defines a language for the definition of access control requests and policies. It is intended to be used with ABAC (Attribute Based Access Control). Along with the language, the standard defines an architecture, workflow and evalua...

Full description

Bibliographic Details
Main Author: Pereira, Óscar Mortágua (author)
Other Authors: Semenski, Vedran (author), Regateiro, Diogo Domingues (author), Aguiar, Rui L. (author)
Format: conferenceObject
Language:eng
Published: 1000
Subjects:
XACML
ABAC
Access Control
Information Security
Software Architecture
IoT
Online Access:http://hdl.handle.net/10773/17697
Country:Portugal
Oai:oai:ria.ua.pt:10773/17697
Description
Summary:The OASIS XACML (eXtensible Access Control Markup Language) standard defines a language for the definition of access control requests and policies. It is intended to be used with ABAC (Attribute Based Access Control). Along with the language, the standard defines an architecture, workflow and evaluation mechanism. When implementing real scenarios, developers can come across with the missing of several issues not addressed by the standard. For example, the architecture proposed defines the workflow but does not define the way components should be distributed over different machines. Additionally, the standard does not include any information about how securing communications between components. This paper proposes a solution to deal with the aforementioned gaps. A proof of concept is also presented in an IoT use case in the context of the European project: SMARTIE – secure and smarter cities data management.

Similar Items