Deploying Access Control using Extended XACML in Open Web Service Environment
نویسندگان
چکیده
Now a days web services have a greater role in development of software systems. Generally, web server wants to determine which access can be granted and communicate with requesterfor open web service environment. These systems are designed to be open and web servers does not have determined conditions for communicate to the access requester. Such consideration makes traditional access control not applicable, which depends upon requester identification and authentication. Typically, XACML language is proposed for define the access control policy. It does not support novel features and not suitable in practice. In this paper, we extend the current XACML by providing novel features for controlling access in interoperable and flexible way, and then illustrate how such concepts can be deployed. Also, extend the standard XACML architecture to incorporate the new features for open web service systems
منابع مشابه
Access Control as a Service for Information Protection in Semantic Web based Smart Environment
Pervasive computing and Internet of Things (IoT) have recently received considerable interest to deploy solutions for the future Internet. Smart environments are integrated with Semantic Web to provide context-awareness to the processed information. Self-learning techniques have been adopted within smart solutions for efficient retrieval of data but do not process data with privacy parameters f...
متن کاملExtending XACML for Open Web-based Scenarios
Traditional access control solutions, based on preliminary identification and authentication of the access requester, are not adequate for open Web service systems, where servers generally do not have prior knowledge of the requesters. In this paper, we provide some extensions to the eXtensible Access Control Markup Language (XACML), which is the most significant and emerging solution for contr...
متن کاملAccess Negotiation within XACML Architecture
Web services offer a possibility of exchanging data between entities from different organizational bounderies. Keeping sensitive resources private in a public world is a common concern of service providers. Thus, there is a need for access control management at the level of the web services in addition to a prior negotiation of access. This negotiation is the first step in the access control ma...
متن کاملSecurity for Web Services: Standards and Research Issues
This chapter identifies the main security requirements for Web services and it describes how such security requirements are addressed by standards for Web services security recently developed or under development by various standardizations bodies. Standards are reviewed according to a conceptual framework that groups them by the main functionalities they provide. Standards that are covered inc...
متن کاملExtending XACML to support Credential Based Hybrid Access Control
Various research efforts are in progress to enforce credential based access control using XACML standard. The current standard of XACML supports attribute based access control [4,5,9,19]. While XACML accepts certified attributes through digital certificates, it does not support credential based access control in which the access conditions are defined not only in terms of credential attributes ...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2016