Abstract This paper presents an infrastructure that enables the use of administrative delegation in an effective way, reducing the complexity in the policy management for some specific scenarios. This infrastructure is in charge of managing the policies of the system during its lifecycle, for example when they are created by the users or when they are collected to take an authorization decision. The proposal makes use of a robust and extensible language as XACML in order to express the authorization policies. However, as we will see, the management infrastructure has been designed in a way that facilitates the task of the different users involved, assuming that those users do not have to be security experts or XACML-aware. 1 Introduction an
The paper summarises the recent and on-going developments and discussions in the Grid security commu...
The XACML standard defines an XML based language for defining access control policies and a related ...
XACML has become the defacto standard for enterprise- wide, policy-based access control. It is a str...
International audienceIn this paper we present a system permitting controlled policy administration ...
Authorization systems today are increasingly complex. They span domains of administration, rely on m...
Policy-based authorization systems have been largely deployed nowadays to control different privileg...
Abstract—Current identity management systems are experi-encing an increasing workload of their admin...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
In this paper we describe how we have added support for dynamic delegation of authority that is enac...
XACML is the OASIS standard language specifically aimed at the specification of authorization polici...
This paper describes the requirements and architecture of authorisation in a multi-disciplinary, mul...
XACML is the OASIS standard language for the specification of authorization and entitlement policies...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
Abstract. Identity federation provides a powerful way for managing sensible information of its users...
We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control ...
The paper summarises the recent and on-going developments and discussions in the Grid security commu...
The XACML standard defines an XML based language for defining access control policies and a related ...
XACML has become the defacto standard for enterprise- wide, policy-based access control. It is a str...
International audienceIn this paper we present a system permitting controlled policy administration ...
Authorization systems today are increasingly complex. They span domains of administration, rely on m...
Policy-based authorization systems have been largely deployed nowadays to control different privileg...
Abstract—Current identity management systems are experi-encing an increasing workload of their admin...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
In this paper we describe how we have added support for dynamic delegation of authority that is enac...
XACML is the OASIS standard language specifically aimed at the specification of authorization polici...
This paper describes the requirements and architecture of authorisation in a multi-disciplinary, mul...
XACML is the OASIS standard language for the specification of authorization and entitlement policies...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
Abstract. Identity federation provides a powerful way for managing sensible information of its users...
We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Access Control ...
The paper summarises the recent and on-going developments and discussions in the Grid security commu...
The XACML standard defines an XML based language for defining access control policies and a related ...
XACML has become the defacto standard for enterprise- wide, policy-based access control. It is a str...