DocumentCode :
3591849
Title :
Using XACML to define access control policy in information system
Author :
Yun-qing Fu ; Chun-xiao Ye
Author_Institution :
Coll. of Comput. Sci., Chongqing Univ., Chongqing
fYear :
2007
Firstpage :
676
Lastpage :
679
Abstract :
Access control is widely used in most information systems. XML or other languages are usually adopted to define access control policy. In this paper, we examine an approach to employ user and role´s attribute expression as a part of access control policy. In our approach, a XACML-based policy language named A-XACML is defined and used as a simple, flexible way to express and enforce access control policies in a variety of environments. The language and schema support include data types, functions, and combining logic which allow simple and complex rules to be defined. Finally, we illustrate how to define access control policies of product document management (PDM) system by using XACML.
Keywords :
XML; authorisation; information systems; A-XACML policy language; access control policy; information system; product document management; role attribute expression; user attribute expression; Access Control; Policy; XACML; XML;
fLanguage :
English
Publisher :
iet
Conference_Titel :
Wireless, Mobile and Sensor Networks, 2007. (CCWMSN07). IET Conference on
ISSN :
0537-9989
Print_ISBN :
978-0-86341-836-5
Type :
conf
Filename :
4786292
Link To Document :
بازگشت