Specification of attribute relations for access control policies and constraints using Policy Machine - Citegraph

Paper Info

Title
Specification of attribute relations for access control policies and constraints using Policy Machine

Abstract
Attribute relations in access control mechanisms or languages allow accurate and efficient specification of some popular access control models. However, most of the access control systems including today's de-facto access control protocol and specification language, XACML, does not provide sufficient syntactic and semantic support for the specification of attribute relations in their scheme. In this paper, we show the deficiencies of XACML in specifying such capabilities in the implementations of the Multilevel Security, Hierarchical Role Based policies and Separation of Duty requirements of access control systems. In comparison, we then demonstrate the attribute relation mechanism provided by a relation-based access control mechanism - the Policy Machine.

Year	DOI	Venue
2010	10.1109/ISIAS.2010.5604043	Information Assurance and Security
Keywords	Field	DocType
XML,authorisation,protocols,specification languages,XACML,access control policies,attribute relation specification mechanism,de-facto access control protocol,hierarchical role based policies,multilevel security,policy machine,relation-based access control mechanism,access control,access control model	Specification language,Computer science,Computer security,Multilevel security,Role-based access control,XACML,Implementation,Access control,Security policy,Separation of duties	Conference
ISBN	Citations	PageRank
978-1-4244-7407-3	0	0.34
References	Authors
4	3

Authors (3 rows)

Cited by (0 rows)

References (4 rows)

Name	Order	Citations	PageRank
Vincent C. Hu	1	143	12.86
David F. Ferraiolo	2	2401	173.08
Serban I. Gavrila	3	155	19.51

1