The XML-based context-constraint access control policy

With concern of the current research results as well as the features of the demands for access control of the Web-based application system, this paper, first of all, raises a context constraint access control theory model on the level of standard reference model, from the perspective of flexibility, generality, clarity and easy to realize, and elaborates on the theory of this model and the architecture of access control system. Then it gives the description and modeling of the access control policy and defines the entities and relations in the model by using a XMLbased policy specification grammar called X-Grammar; finally, in the chapter of design and implementation of access control system, the paper gives the overall function description and structure design, raises an engineering method to elicit and define context constraints and ends up with the discussion of the key points in the design and implementation phase for the policy management sub-system. © 2009 IEEE