Please use this identifier to cite or link to this item:
Title: The XACML Standard: addressing architectural and security aspects
Author: Pereira, Óscar Mortágua
Semenski, Vedran
Regateiro, Diogo Domingues
Aguiar, Rui L.
Keywords: XACML
Access Control
Information Security
Software Architecture
Issue Date: 22-May-2017
Abstract: The OASIS XACML (eXtensible Access Control Markup Language) standard defines a language for the definition of access control requests and policies. It is intended to be used with ABAC (Attribute Based Access Control). Along with the language, the standard defines an architecture, workflow and evaluation mechanism. When implementing real scenarios, developers can come across with the missing of several issues not addressed by the standard. For example, the architecture proposed defines the workflow but does not define the way components should be distributed over different machines. Additionally, the standard does not include any information about how securing communications between components. This paper proposes a solution to deal with the aforementioned gaps. A proof of concept is also presented in an IoT use case in the context of the European project: SMARTIE – secure and smarter cities data management.
Peer review: yes
DOI: 10.5220/0006224901890197
ISBN: 978-989-758-245-5
Appears in Collections:DETI - Comunicações

Files in This Item:
File Description SizeFormat 
(CP) - 2017-04-25 (IoTBDS - Porto - Portugal) THE XACML STANDARD - Addressing Architectural and Security Aspects.pdfDocumento principal548.87 kBAdobe PDFrestrictedAccess

Formato BibTex MendeleyEndnote Degois 

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.