A XACML-based access control model for web service

Proceedings - 2005 International Conference on Wireless Communications, Networking and Mobile Computing, WCNM 2005

Volumn 2, Issue , 2005, Pages 1140-1144

  Tao, Han ^a  

^a South China of Tech   (China)

Author keywords

[No Author keywords available]

Indexed keywords

ACCESS CONTROL CRITERIA; ACCESS CONTROL MODEL; EXTENSIBLE ACCESS CONTROL MARKUP LANGUAGE; WEB SERVICE;

DATA COMMUNICATION SYSTEMS; DATA HANDLING; DISTRIBUTED COMPUTER SYSTEMS; INTERNET; SECURITY OF DATA; XML;

WORLD WIDE WEB;

EID: 33646932243     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/WCNM.2005.1544254     Document Type: Conference Paper

References (20)

1. Lorch. Markus. Provtor, Seth, Lepra and Sumit, "First experiences using XACML for access control in distributed systems", Proceedings of the ACM Workshop on XMI, Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security), 2003, pp 25-37
2. Lorch. M, Kafura. D and Shah. S. "An XACML-bascd policy management and authorization service for globus resources". Grid Computing, 2003. Proceedings. Fourth International Workshop on 17 Nov. 2003, pp: 208 - 210
3. Tim Moses, "Privacy policy profile of XACMI ", OASIS TC Working Draft, Dec 6, 2004, in press
4. Anne Anderson. Hal Lockhart. "SAML2.0 profile of XACML", OASIS TC Working Draft. Dec 6. 2004, in press
5. Park, Namje, "Certificate validation service using XKMS for computational grid", Proceedings of the ACM Workshop on XML Security 2003. pp: 112 - 120
6. Anne Anderson, AH, "An introduction to the web services policy language (WSPL,)", Fifth IEEE International Workshop on Policies for Distributed Systems and Networks. Proceedings, 2004. pp: 189-192
7. Ardagna, "A comparison of modeling strategies in defining XML-based access control languages", Computer Systems Science and Engineering, v 19, n 3, May, 2004, pp 1.41-1.49
8. Toktar, "RSVP policy control using XACML", Fifth IEEE International Workshop on Policies for Distributed Systems and Networks. Proceedings, 2004, pp: 87-96
9. Tim Moses. "XACML profile for Web-services", OASIS TC Working Draft. Sep 29, 2003, in press
10. Gross, T. "Security analysis of the SAML/ single sign-on browser/artifact profile", Computer Security Applications Conference, 2003, pp:298 - 307
11. Pfitzmann. B., Waidner, M., "Analysis of liberty single-sign-on with enabled clients". Internet Computing, IEEE. Volume 7, Issue 6, Nov.-Dec. 2003. pp: 38 - 44
12. Sicker, D.C. Kulkami, A., Chavali, A., Fajandar. M., "A federated model for secure Web-based videoconferencing", Information Technology: Coding and Computing, 2003. Proceedings. ITCC 2003. International Conference on 28-30 April 2003, pp: 396 - 400
13. Jongil Jeong, Dongkyoo Shin. Dongil Shin, "An XML-based single sign-on scheme supporting mobile and home network service environments". Consumer Electronics, IEEE Transactions on Volume 50, Issue 4, Nov. 2004. pp: 1081-1086.
14. Matheus. A," How to declare access control policies for XML structured Information Objects using OASIS' extensible Access Control Markup Language (XACML)", System Sciences, 2005. HICSS '05. Proceedings of the 38th Annual Hawaii International Conference on 03-06 Jan. 2005, pp: 168a-168a
15. Leune, K., van den Heuvel, W. J., Papazoglou, M, "Exploring a multifaceted framework for SOC: how to develop secure Web-service interactions", Research Issues on Data Engineering: Web Services for e-Commerce and e-Government Applications, 2004. Proceedings. 14th International Workshop on 28-29 March 2004, pp: 56-61
16. Goth and Greg, "Identity management, Access specs are rolling along" Source: IEEE Internet Computing, v 9, n 1, January/February, 2005, pp: 9-11
17. Navarro, Guillermo, Firozabadi, Babak Sadighi and Rissanen, "Constrained delegation in XML-based access control and digital riglits management standards". Proceedings of the IASTED International Conference on Communication, Network, and Information Security, Proceedings of the IASTED International Conference on Communication, Network, and Information Security. 2003, pp: 271-276
18. Tout, Hicham. Schoenficld and Brook, "The role of an access control policy sandbox in a service oriented architecture", Proceedings of the International Conference on Internet Computing, IC'04, v 1, Proceedings of the International Conference on Internet Computing, IC'04, 2004, pp: 434-439
19. Humenu, Polar and Joncheng Kuo. "Dynamically Authorized Role-Based Access Control ("or Secure Distributed Computation"Source: Proceedings of the ACM Workshop on XML Security, 2003, pp: 97-103
20. Lopez. G, Gomez. A, Marin. R and Canovas. O," A Network Access Control Approach Based on the AAA Architecture and Authorization Attributes", Parallel and Distributed Processing Symposium, 2005. Proceedings. 19th IEEE International04-08 April 2005, pp: 287a - 287a