Paper published in a journal (Scientific congresses, symposiums and conference proceedings)
Towards a full support of obligations in XACML
El Kateb, Donia; Elrakaiby, Yehia; Mouelhi, T. et al.
2015In Lecture Notes in Computer Science, 8924, p. 213-221
Peer reviewed
 

Files


Full Text
towards a full support.pdf
Publisher postprint (1.06 MB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Keywords :
PDP; PEP; Usage control; XACML; Computational linguistics; Decision making; Internet; Markup languages; Conceptual architecture; Extensible access control markup languages; Policy-based systems; Separation of concerns; Access control
Abstract :
[en] Policy-based systems rely on the separation of concerns, by implementing independently a software system and its associated security policy. XACML (eXtensible Access Control Markup Language) proposes a conceptual architecture and a policy language to reflect this ideal design of policy-based systems.However, while rights are well-captured by authorizations, duties, also called obligations, are not well managed by XACML architecture. The current version of XACML lacks (1) well-defined syntax to express obligations and (2) an unified model to handle decision making w.r.t. obligation states and the history of obligations fulfillment/ violation. In this work, we propose an extension of XACML reference model that integrates obligation states in the decision making process.We have extended XACML language and architecture for a better obligations support and have shown how obligations are managed in our proposed extended XACML architecture: OB-XACML. © Springer International Publishing Switzerland 2015.
Disciplines :
Computer science
Identifiers :
eid=2-s2.0-84942518182
Author, co-author :
El Kateb, Donia ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)
Elrakaiby, Yehia ;  Security, Reliability and TrustS, Interdisciplinary Research Center, SnT, University of Luxembourg, Luxembourg, Luxembourg
Mouelhi, T.;  Security, Reliability and TrustS, Interdisciplinary Research Center, SnT, University of Luxembourg, Luxembourg, Luxembourg
Rubab, Iram ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC)
Le Traon, Yves ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
External co-authors :
yes
Language :
English
Title :
Towards a full support of obligations in XACML
Publication date :
2015
Event name :
9th International Conference on Risks and Security of Internet and Systems, CRiSIS 2014
Event date :
27 August 2014 through 29 August 2014
Audience :
International
Journal title :
Lecture Notes in Computer Science
ISSN :
0302-9743
Publisher :
Springer Verlag
Volume :
8924
Pages :
213-221
Peer reviewed :
Peer reviewed
Commentary :
142439 9783319171265
Available on ORBilu :
since 03 April 2016

Statistics


Number of views
127 (4 by Unilu)
Number of downloads
521 (0 by Unilu)

Scopus citations®
 
1
Scopus citations®
without self-citations
1

Bibliography


Similar publications



Contact ORBilu