Name
Abstract | ||
|---|---|---|
Traditional access control solutions, based on preliminary identification and authentication of the access requester, are not adequate for the context of open web service systems, where servers generally do not have prior knowledge of the requesters. The research community has acknowledged such a paradigm shift and several investigations have been carried out for new approaches to regulate access control in open dynamic settings. Typically based on logic, such approaches, while appealing for their expressiveness, result not applicable in practice, where simplicity, efficiency, and consistency with consolidated technology are crucial. The eXtensible Access Control Markup Language (XACML) has established itself as the emerging technological solution for controlling access in an interoperable and flexible way. Although supporting the most common policy representation mechanisms and having acquired a significant spread in the research community and the industry, XACML still suffers from some limitations which impact its ability to support actual requirements of open web-based systems. In this paper, we provide a simple and effective formalization of novel concepts that have to be supported for enforcing the new access control paradigm needed in open scenarios, toward the aim of providing an expressive solution actually deployable with today's technology. We illustrate how the concepts of our model can be deployed in the XACML standard by exploiting its extension points for the definition of new functions, and introducing a dialog management framework to enable access control interactions between web service clients and servers. |
Year | DOI | Venue |
|---|---|---|
2011 | 10.1109/TSC.2010.29 | IEEE T. Services Computing |
Keywords | DocType | Volume |
Open Web Service Applications,research community,open dynamic setting,access control interaction,traditional access control solution,access control,open web service system,new access control paradigm,open web-based system,Deployable Access Control,access requester,open scenario | Journal | 4 |
Issue | ISSN | Citations |
2 | 1939-1374 | 5 |
PageRank | References | Authors |
0.52 | 0 | 6 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Claudio A. Ardagna | 1 | 416 | 24.15 |
| Sabrina De Capitani Di Vimercati | 2 | 3991 | 350.57 |
| Stefano Paraboschi | 3 | 3590 | 450.24 |
| Eros Pedrini | 4 | 5 | 0.52 |
| Pierangela Samarati | 5 | 7152 | 785.82 |
| Mario Verdicchio | 6 | 236 | 16.27 |