peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently a software system and its associated security policy. XACML (eXtensible Access Control Markup Language) proposes a conceptual architecture and a policy language to reflect this ideal design of policy-based systems.However, while rights are well-captured by authorizations, duties, also called obligations, are not well managed by XACML architecture. The current version of XACML lacks (1) well-defined syntax to express obligations and (2) an unified model to handle decision making w.r.t. obligation states and the history of obligations fulfillment/ violation. In this work, we propose an extension of XACML reference model that integrates obligati...
XACML is the OASIS standard language for the specification of authorization and entitlement policies...
Today, many governments tend to propose e-services to their citizens. However, implementing an eGove...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently ...
Obligations are an important and indispensable part of many access control policies, such as those i...
The paper summarises the recent and on-going developments and discussions in the Grid security commu...
Most access control mechanisms focus on how to define the rights of users in a precise way to preven...
The OASIS XACML standard emerged as a pure declarative language allowing to express access control. ...
Abstract. We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Acces...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
Some software applications are developed to collect, store, and manage users\u27 personal, medical, ...
XACML has become the defacto standard for enterprise- wide, policy-based access control. It is a str...
Over the last few years there has been a rapid development of technologies such as ubiquitous comput...
The XACML standard defines an XML based language for defining access control policies and a related ...
Abstract. Many languages and algebras have been proposed in recent years for the specification of au...
XACML is the OASIS standard language for the specification of authorization and entitlement policies...
Today, many governments tend to propose e-services to their citizens. However, implementing an eGove...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...
peer reviewedPolicy-based systems rely on the separation of concerns, by implementing independently ...
Obligations are an important and indispensable part of many access control policies, such as those i...
The paper summarises the recent and on-going developments and discussions in the Grid security commu...
Most access control mechanisms focus on how to define the rights of users in a precise way to preven...
The OASIS XACML standard emerged as a pure declarative language allowing to express access control. ...
Abstract. We propose a formal account of XACML, an OASIS standard adhering to the Policy Based Acces...
Abstract. Access control is a critical functionality in distributed sys-tems. Services and resources...
Some software applications are developed to collect, store, and manage users\u27 personal, medical, ...
XACML has become the defacto standard for enterprise- wide, policy-based access control. It is a str...
Over the last few years there has been a rapid development of technologies such as ubiquitous comput...
The XACML standard defines an XML based language for defining access control policies and a related ...
Abstract. Many languages and algebras have been proposed in recent years for the specification of au...
XACML is the OASIS standard language for the specification of authorization and entitlement policies...
Today, many governments tend to propose e-services to their citizens. However, implementing an eGove...
Abstract. We describe adding support for dynamic delegation of authority between users in multiple a...