Title :
Enforcing RFID data visibility restrictions using XACML security policies
Author :
Pardal, M.L. ; Harrison, Michael ; Sarma, Sridevi ; Marques, J.A.
Author_Institution :
Dept. of Comput. Sci. & Eng., Tech. Univ. of Lisbon, Lisbon, Portugal
Abstract :
Radio Frequency Identification (RFID) technology allows automatic data capture from tagged objects moving in a supply chain. This data can be very useful if it is used to answer traceability queries, however it is distributed across many different repositories, owned by different companies. Discovery Services (DS) are designed to assist in retrieving the RFID data relevant for traceability queries while enforcing sharing policies that are defined and required by participating companies to prevent sensitive data from being exposed. In this paper we define an interface for Supply Chain Authorization (SC-Az) and describe the implementation of two visibility restriction mechanisms based on Access Control Lists (ACLs) and Capabilities. Both approaches were converted to the standard eXtensible Access Control Markup Language (XACML) and their correctness and performance was evaluated for supply chains with increasing size.
Keywords :
XML; authorisation; radiofrequency identification; supply chain management; telecommunication computing; telecommunication security; ACL; DS; RFID data visibility restrictions; SC-Az interface; XACML; XACML security policy; access control lists; automatic data capture; discovery services; radiofrequency identification technology; standard extensible access control markup language; supply chain authorization; supply chain management; traceability query; visibility restriction mechanisms; Authorization; Companies; Radiofrequency identification; Standards; Supply chains;
Conference_Titel :
RFID-Technologies and Applications (RFID-TA), 2012 IEEE International Conference on
Conference_Location :
Nice
Print_ISBN :
978-1-4673-4656-6
Electronic_ISBN :
978-1-4673-4658-0
DOI :
10.1109/RFID-TA.2012.6404558
