Conformance Checking of Access Control Policies Specified in XACML

CC
COMPSAC
2007
2007 31st Annual International Computer Software and Applications Conference
Abstract - Conformance Checking of Access Control Policies Specified in XACML

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Vincent C. Hu Articles by Evan Martin Articles by JeeHyun Hwang Articles by Tao Xie

2007 31st Annual International Computer Software and Applications Conference

Beijing, China

July 24-July 27

ISBN: 0-7695-2870-8

	ASCII Text	x
	Vincent C. Hu, Evan Martin, JeeHyun Hwang, Tao Xie, "Conformance Checking of Access Control Policies Specified in XACML," Computer Software and Applications Conference, Annual International, vol. 2, pp. 275-280, 2007 31st Annual International Computer Software and Applications Conference, 2007.

	BibTex	x
	@article{ 10.1109/COMPSAC.2007.96, author = {Vincent C. Hu and Evan Martin and JeeHyun Hwang and Tao Xie}, title = {Conformance Checking of Access Control Policies Specified in XACML}, journal ={Computer Software and Applications Conference, Annual International}, volume = {2}, year = {2007}, issn = {0730-3157}, pages = {275-280}, doi = {http://doi.ieeecomputersociety.org/10.1109/COMPSAC.2007.96}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Software and Applications Conference, Annual International TI - Conformance Checking of Access Control Policies Specified in XACML SN - 0730-3157 SP275 EP280 A1 - Vincent C. Hu, A1 - Evan Martin, A1 - JeeHyun Hwang, A1 - Tao Xie, PY - 2007 KW - null VL - 2 JA - Computer Software and Applications Conference, Annual International ER -

Vincent C. Hu, National Institute of Standards and Technology, USA

Evan Martin, North Carolina State University, USA

JeeHyun Hwang, North Carolina State University, USA

Tao Xie, North Carolina State University, USA

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/COMPSAC.2007.96

Access control is one of the most fundamental and widely used security mechanisms. Access control mechanisms con- trol which principals such as users or processes have ac- cess to which resources in a system. To facilitate manag- ing and maintaining access control, access control policies are increasingly written in specification languages such as XACML. The specification of access control policies itself is often a challenging problem. Furthermore, XACML is in- tentionally designed to be generic: it provides the freedom in describing access control policies, which are well-known or invented ones. But the flexibility and expressiveness pro- vided by XACML come at the cost of complexity, verbosity, and lack of desirable-property enforcement. Often common properties for specific access control policies may not be satisfied when these policies are specified in XACML, caus- ing the discrepancy between what the policy authors intend to specify and what the actually specified XACML policies reflect. In this position paper, we propose an approach for conducting conformance checking of access control policies specified in XACML based on existing verification and test- ing tools for XACML policies.

Citation:

Vincent C. Hu, Evan Martin, JeeHyun Hwang, Tao Xie, "Conformance Checking of Access Control Policies Specified in XACML," compsac, vol. 2, pp.275-280, 2007 31st Annual International Computer Software and Applications Conference, 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.