How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML)

Andreas Matheus

doi:10.1109/HICSS.2005.300

H
HICSS
2005
Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 7
Abstract - How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML)

	This Article
	PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Andreas Matheus

Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 7

How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML) (PDF)

Big Island, Hawaii

January 03-January 06

ISBN: 0-7695-2268-8

	ASCII Text	x
	Andreas Matheus, "How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML)," 2013 46th Hawaii International Conference on System Sciences, vol. 7, pp. 168a, Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 7, 2005.

	BibTex	x
	@article{ 10.1109/HICSS.2005.300, author = {Andreas Matheus}, title = {How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML)}, journal ={2013 46th Hawaii International Conference on System Sciences}, volume = {7}, year = {2005}, issn = {1530-1605}, pages = {168a}, doi = {http://doi.ieeecomputersociety.org/10.1109/HICSS.2005.300}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - 2013 46th Hawaii International Conference on System Sciences TI - How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML) SN - 1530-1605 SP EP A1 - Andreas Matheus, PY - 2005 KW - null VL - 7 JA - 2013 46th Hawaii International Conference on System Sciences ER -

Andreas Matheus, Technische Universit?t M?nchen, Munich, Germany

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/HICSS.2005.300

Web Services, as the new building blocks of today's Internet provide the power to access distributed and heterogeneous information objects, which is the base for more advanced use like in electronic commerce. But, the access to these information objects is not always unrestricted. The owner of the information objects may control access due to different reasons. This paper introduces a novel approach for declaring information object related access restrictions, based on a valid XML encoding. The paper shows, how the access restrictions can be declared using XACML and Xpath. Based on the specified 'fine grained' policies, multiple policies can be applicable. If these policies declare positive and negative permissions for the same subject, policy inconsistencies exist. The paper also focuses on specifying the ground of policy inconsistencies and how to solve them.

Citation:

Andreas Matheus, "How to Declare Access Control Policies for XML Structured Information Objects using OASIS' eXtensible Access Control Markup Language (XACML)," hicss, vol. 7, pp.168a, Proceedings of the 38th Annual Hawaii International Conference on System Sciences (HICSS'05) - Track 7, 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.