Title :
Security XACML access control model based on SOAP encapsulate
Author :
Ran, Chongshan ; Guo, Guili
Author_Institution :
Coll. of Electr. & Inf. Eng., Shaanxi Univ. of Sci. & Technol., Xi´´an, China
Abstract :
The inherent security flaws of the message in the traditional XACML access control process, make the XACML messages transferred among the various actors in the model suffer great threats. In this paper, traditional XACML and scalable SOAP message-level security strategy are combined to construct a security XACML access control model based on SOAP encapsulate (S-XACML). In the model, the XACML messages transferred among the various actors will be packaged into SOAP message, and then it is handled with the End to End message-level security strategy. According to the above treatment, the new model can effectively protect the confidentiality, integrity, authorization and authentication of the message and the users´ privacy.
Keywords :
XML; access protocols; authorisation; data encapsulation; message authentication; SOAP encapsulation; XACML message; message authentication; message authorization; message confidentiality; message inherent security flaw; message integrity; scalable SOAP message-level security strategy; security XACML access control model; Access control; Authentication; Computers; Receivers; Simple object access protocol; S-XACML; SAML; SOAP; XKMS; access control;
Conference_Titel :
Computer Science and Service System (CSSS), 2011 International Conference on
Conference_Location :
Nanjing
Print_ISBN :
978-1-4244-9762-1
DOI :
10.1109/CSSS.2011.5973952
