The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

XACML policy integration algorithms: not to be confused with XACML policy combination algorithms

Author

Elisa Bertino

Entry type

proceedings

Abstract

XACML is the OASIS standard language for the specification of authorization and entitlement policies. However, while XACML well addresses security requirements of a single enterprise (even if large and composed by multiple departments), it does not address the requirements of virtual enterprises built through collaboration of several autonomous subjects sharing their resources. In this paper we highlight such limitations and we propose an XACML extension, the policy integration algorithm, to address them. In the paper we also discuss in which respect the process of comparing two XACML policies differs from the process used to compare other business rules.

Date

2006

URL

http://portal.acm.org/citation.cfm?id=1133058.1133089

Booktitle

Symposium on Access Control Models and Technologies

Key alpha

Bertino

Pages

219-227

Publisher

ACM

Affiliation

Purdue University

Publication Date

2006-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.