Reference : Towards a full support of obligations in XACML
Scientific congresses, symposiums and conference proceedings : Paper published in a journal
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/26429
Towards a full support of obligations in XACML
English
El Kateb, Donia mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)]
Elrakaiby, Y. [Security, Reliability and TrustS, Interdisciplinary Research Center, SnT, University of Luxembourg, Luxembourg, Luxembourg]
Mouelhi, T. [Security, Reliability and TrustS, Interdisciplinary Research Center, SnT, University of Luxembourg, Luxembourg, Luxembourg]
Rubab, Iram mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)]
Le Traon, Yves mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)]
2015
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Springer Verlag
8924
213-221
Yes
International
03029743
9th International Conference on Risks and Security of Internet and Systems, CRiSIS 2014
27 August 2014 through 29 August 2014
[en] PDP ; PEP ; Usage control ; XACML ; Computational linguistics ; Decision making ; Internet ; Markup languages ; Conceptual architecture ; Extensible access control markup languages ; Policy-based systems ; Separation of concerns ; Access control
[en] Policy-based systems rely on the separation of concerns, by implementing independently a software system and its associated security policy. XACML (eXtensible Access Control Markup Language) proposes a conceptual architecture and a policy language to reflect this ideal design of policy-based systems.However, while rights are well-captured by authorizations, duties, also called obligations, are not well managed by XACML architecture. The current version of XACML lacks (1) well-defined syntax to express obligations and (2) an unified model to handle decision making w.r.t. obligation states and the history of obligations fulfillment/ violation. In this work, we propose an extension of XACML reference model that integrates obligation states in the decision making process.We have extended XACML language and architecture for a better obligations support and have shown how obligations are managed in our proposed extended XACML architecture: OB-XACML. © Springer International Publishing Switzerland 2015.
http://hdl.handle.net/10993/26429
10.1007/978-3-319-17127-2_14
142439
9783319171265

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
towards a full support.pdfPublisher postprint1.03 MBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.