Research and Application of XACML-Based Fine-Grained Security Policy for Distributed System

被引:0
|
作者
Zhang Sainan [1 ]
Hong Yu [1 ]
机构
[1] PLA Univ Sci & Technol, Coll Command Informat Syst, Nanjing, Jiangsu, Peoples R China
来源
PROCEEDINGS 2013 INTERNATIONAL CONFERENCE ON MECHATRONIC SCIENCES, ELECTRIC ENGINEERING AND COMPUTER (MEC) | 2013年
关键词
access control; XACML; security; UML;
D O I
暂无
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
In distributed system development security is a major design criteria. However, the present software system modeling does not deal with security. System security policies and mechanisms often become the supplement at the end of system development. In this paper, a software development process is considered two common stages which are functional requirement analysis stage and system design stage. We extend the UML notation to model the security requirements which is generated from the function modeling process. The access control UML models are finally used to generate access control policies which can be described by XACML and deployed into the enforcement infrastructure. Finally, the decisions for users' requests will be made through Sun's XACML Implementation.
引用
收藏
页码:1848 / 1851
页数:4
相关论文
共 50 条
  • [1] XACML-Based Fine-Grained Security Policy for Distributed System
    Zhang, Ai-Juan
    Gao, Jing-Xiang
    Ji, Cheng
    [J]. ADVANCED RESEARCH ON AUTOMATION, COMMUNICATION, ARCHITECTONICS AND MATERIALS, PTS 1 AND 2, 2011, 225-226 (1-2): : 848 - +
  • [2] Using XACML for Embedded and Fine-Grained Access Control Policy
    Hsieh, George
    Foster, Keith
    Emamali, Gerald
    Patrick, Gregory
    Marvel, Lisa
    [J]. 2009 INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY, AND SECURITY (ARES), VOLS 1 AND 2, 2009, : 462 - +
  • [3] An Algebra for Fine-Grained Integration of XACML Policies
    Rao, Prathima
    Lin, Dan
    Bertino, Elisa
    Li, Ninghui
    Lobo, Jorge
    [J]. SACMAT'09: PROCEEDINGS OF THE 14TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, 2009, : 63 - 72
  • [4] Fine-Grained Access Control via XACML Policy Optimization in Cloud Computing
    Pei, Xin
    Yu, Huiqun
    Fan, Guisheng
    [J]. INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2015, 25 (9-10) : 1709 - 1714
  • [5] Distributed Access Control Management - A XACML-Based Approach
    Rissanen, Erik
    Brossard, David
    Slabbert, Adriaan
    [J]. SERVICE-ORIENTED COMPUTING - ICSOC 2009, PROCEEDINGS, 2009, 5900 : 639 - +
  • [6] A Distributed System for The Management of Fine-grained Provenance
    Sultana, Salmin
    Bertino, Elisa
    [J]. JOURNAL OF DATABASE MANAGEMENT, 2015, 26 (02) : 32 - 47
  • [7] An XACML-based policy management and authorization service for globus resources
    Lorch, M
    Kafura, D
    Shah, S
    [J]. FOURTH INTERNATIONAL WORKSHOP ON GRID COMPUTING, PROCEEDINGS, 2003, : 208 - 210
  • [8] On-line tracing of XACML-based policy coverage criteria
    Lonetti, Francesca
    Marchetti, Eda
    [J]. IET SOFTWARE, 2018, 12 (06) : 480 - 488
  • [9] Fine-Grained Filtering of Data Providing Web Services with XACML
    Brown, Kevin P.
    Hayes, Michael A.
    Allison, David S.
    Capretz, Miriam A. M.
    Mann, Rupinder
    [J]. 2012 IEEE 21ST INTERNATIONAL WORKSHOP ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES (WETICE), 2012, : 438 - 443
  • [10] Ownership: A Distributed Futures System for Fine-Grained Tasks
    Wang, Stephanie
    Liang, Eric
    Oakes, Edward
    Hindman, Ben
    Luan, Frank
    Cheng, Audrey
    [J]. PROCEEDINGS OF THE 18TH USENIX SYMPOSIUM ON NETWORKED SYSTEM DESIGN AND IMPLEMENTATION, 2021, : 671 - 686
12345