The XACML Standard - Addressing Architectural and Security Aspects

Óscar Mortágua Pereira; Vedran Semenski; Diogo Domingues Regateiro; Rui L. Aguiar

doi:10.5220/0006224901890197

The XACML Standard - Addressing Architectural and Security Aspects

Óscar Mortágua Pereira, Vedran Semenski, Diogo Domingues Regateiro, Rui L. Aguiar

2017

Abstract

The OASIS XACML (eXtensible Access Control Markup Language) standard defines a language for the definition of access control requests and policies. It is intended to be used with ABAC (Attribute Based Access Control). Along with the language, the standard defines an architecture, workflow and evaluation mechanism. When implementing real scenarios, developers can come across with the missing of several issues not addressed by the standard. For example, the architecture proposed defines the workflow but does not define the way components should be distributed over different machines. Additionally, the standard does not include any information about how securing communications between components. This paper proposes a solution to deal with the aforementioned gaps. A proof of concept is also presented in an IoT use case in the context of the European project: SMARTIE – secure and smarter cities data management.

Download

Paper Citation

in Harvard Style

Mortágua Pereira Ó., Semenski V., Domingues Regateiro D. and Aguiar R. (2017). The XACML Standard - Addressing Architectural and Security Aspects . In Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS, ISBN 978-989-758-245-5, pages 189-197. DOI: 10.5220/0006224901890197

in Bibtex Style

@conference{iotbds17,
author={Óscar Mortágua Pereira and Vedran Semenski and Diogo Domingues Regateiro and Rui L. Aguiar},
title={The XACML Standard - Addressing Architectural and Security Aspects},
booktitle={Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,},
year={2017},
pages={189-197},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006224901890197},
isbn={978-989-758-245-5},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 2nd International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,
TI - The XACML Standard - Addressing Architectural and Security Aspects
SN - 978-989-758-245-5
AU - Mortágua Pereira Ó.
AU - Semenski V.
AU - Domingues Regateiro D.
AU - Aguiar R.
PY - 2017
SP - 189
EP - 197
DO - 10.5220/0006224901890197