DocumentCode
3591849
Title
Using XACML to define access control policy in information system
Author
Yun-qing Fu ; Chun-xiao Ye
Author_Institution
Coll. of Comput. Sci., Chongqing Univ., Chongqing
fYear
2007
Firstpage
676
Lastpage
679
Abstract
Access control is widely used in most information systems. XML or other languages are usually adopted to define access control policy. In this paper, we examine an approach to employ user and role´s attribute expression as a part of access control policy. In our approach, a XACML-based policy language named A-XACML is defined and used as a simple, flexible way to express and enforce access control policies in a variety of environments. The language and schema support include data types, functions, and combining logic which allow simple and complex rules to be defined. Finally, we illustrate how to define access control policies of product document management (PDM) system by using XACML.
Keywords
XML; authorisation; information systems; A-XACML policy language; access control policy; information system; product document management; role attribute expression; user attribute expression; Access Control; Policy; XACML; XML;
fLanguage
English
Publisher
iet
Conference_Titel
Wireless, Mobile and Sensor Networks, 2007. (CCWMSN07). IET Conference on
ISSN
0537-9989
Print_ISBN
978-0-86341-836-5
Type
conf
Filename
4786292
Link To Document