Title :
Dealing with Stable Environmental Conditions in XACML Systems
Author :
Laborde, Romain ; Desprats, Thierry
Author_Institution :
IRIT UMR 5505, Toulouse
Abstract :
XACML (extensible Access Control Markup Language) is an XML-based language for access control that has been standardized in OASLS. In this language, any entities involved in access control (i.e. users, resources, actions and environment) are specified by a set of attributes. This specification also includes the description of an architecture that explains how the policy decision point (PDP) retrieves the needed attributes values when it evaluates the policy to take its authorization decision. In this paper, we show this approach for getting the attributes values is a bottleneck to the performance of the authorization decision-making-process for attributes whose process for retrieving the value is long and the changing of its value doesn´t impact the policy frequently. Thus, we propose an improvement of the XACML architecture in order to accelerate the decision-making-process when PDP has to treat such kind of attributes.
Keywords :
XML; access control; authorisation; authorization decision-making-process; extensible access control markup language; policy decision point; stable environmental condition; Acceleration; Access control; Authorization; Communication system security; Decision making; Internet; Markup languages; Open systems; Permission; Protection;
Conference_Titel :
Systems and Networks Communications, 2007. ICSNC 2007. Second International Conference on
Conference_Location :
Cap Esterel
Print_ISBN :
0-7695-2938-0
Electronic_ISBN :
978-0-7695-2938-7
DOI :
10.1109/ICSNC.2007.30