ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Evaluating distributed xacml policies
Full text PdfPdf (235 KB)
Source
Workshop On Secure Web Services archive
Proceedings of the 2007 ACM workshop on Secure web services table of contents
Fairfax, Virginia, USA
SESSION: Session 4 table of contents
Pages: 99 - 110  
Year of Publication: 2007
ISBN:978-1-59593-892-3
Authors
Vijayant Dhankhar  George Mason University, Fairfax, VA
Saket Kaushik  George Mason University, Fairfax, VA
Duminda Wijesekera  George Mason University, Fairfax, VA
Anil Nerode  Cornell University, Ithaca, NY
Sponsors
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 60,   Citation Count: 0
Additional Information:

abstract   references   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1314418.1314434
What is a DOI?

ABSTRACT

We extend the XACML reference implementation so that a policyset consisting of remote references to other policies can be evaluated distributively. Our extension also covers requests to resources that need to be used exclusively. We do so by implementing a nested transaction model for the evaluation of distributed XACML policies. Experiments show reasonable performance of our access controller.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
V. Dhankhar, S. Kaushik, and D. Wijesekera. Xacml policies for exclusive resource usage. In 21st Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 07), 2007.
 
2
Jim Gray, Notes on Data Base Operating Systems, Operating Systems, An Advanced Course, p.393-481, January 1978
 
3
R. Lepro. Cardea: Dynamic access control in distributed systems. Technical Report NAS Technical Report NAS-03-020, NASA Advanced Supercomputing (NAS) Division, Moffett Field, CA 94035, Nov 2003.
 
4
J. E. B. Moss. Nested Transactions: An Approach to Reliable Distributed Computing. PhD thesis, 1981.
 
5
Marian H. Nodine , Stanley B. Zdonik, Cooperative Transaction Hierarchies: A Transaction Model to Support Design Applications, Proceedings of the 16th International Conference on Very Large Data Bases, p.83-94, August 13-16, 1990
 
6
OASIS. Extensible access control markup language, Feb 2005.
 
7
H. Shen and P. Dewan. Access control for collaborative environments. Software Engineering Research Center SERC-TR-123-P, NASA Advanced Supercomputing (NAS) Division, Aug 1992
 
8
Sun. Sun's xacml implementation. http://sunxacml.sourceforge.net/index.html, July 2004.
9
William Tolone , Gail-Joon Ahn , Tanusree Pai , Seng-Phil Hong, Access control in collaborative systems, ACM Computing Surveys (CSUR), v.37 n.1, p.29-41, March 2005  [doi>10.1145/1057977.1057979]

INDEX TERMS

Primary Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.4 Distributed Systems
          Subjects: Distributed applications

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.0 General
          Subjects: Security and protection (e.g., firewalls)


General Terms:
Security


Keywords:
XACML, distributed evaluation, web services security

Collaborative Colleagues:
Vijayant Dhankhar: colleagues
Saket Kaushik: colleagues
Duminda Wijesekera: colleagues
Anil Nerode: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player