IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

This chapter presents the results of the research on how the current standards for access control policies can be extended. In particular, Section 18.1 illustrates how privacy issues can be effectively tackled by means of a credential-based access control that includes anonymous credentials. Section 18.2 shows how the expressivity of policy languages can be exploited to introduce ontologies that model credential taxonomies and the relations among them, with a particular stress on the support for delegation mechanisms. Section 18.3 investigates the privacy issues that arise in those access control systems that are enriched with a dialog framework that enables servers to publish their policies. Finally, Section 18.4 maps these proposals onto a set a possible extensions of the architecture of the current de facto standard in access control policy languages: XACML.

Advances in access control policies / C.A. Ardagna, S. De Capitani Di Vimercati, G. Neven, S. Paraboschi, E. Pedrini, F.S. Preiss, P. Samarati, M. Verdicchio - In: Privacy and identity management for life / [a cura di] J. Camenisch, S. Fischer-Hubner, K. Rannenberg. - Berlin : Springer, 2011. - ISBN 9783642203169. - pp. 327-341

Advances in access control policies

C.A. Ardagna^Primo;S. De Capitani Di Vimercati^Secondo;G. Neven;S. Paraboschi;E. Pedrini;F. S. Preiss;P. Samarati^Penultimo;M. Verdicchio

2011

Abstract

This chapter presents the results of the research on how the current standards for access control policies can be extended. In particular, Section 18.1 illustrates how privacy issues can be effectively tackled by means of a credential-based access control that includes anonymous credentials. Section 18.2 shows how the expressivity of policy languages can be exploited to introduce ontologies that model credential taxonomies and the relations among them, with a particular stress on the support for delegation mechanisms. Section 18.3 investigates the privacy issues that arise in those access control systems that are enriched with a dialog framework that enables servers to publish their policies. Finally, Section 18.4 maps these proposals onto a set a possible extensions of the architecture of the current de facto standard in access control policy languages: XACML.

Scheda breve

Scheda completa

Scheda completa (DC)

	Settori scientifico-disciplinari del contributo
	
			Settore INF/01 - Informatica
		
	Data di pubblicazione
	
			2011
		
	Tipologia
	
			Book Part (author)
		
	Appare nelle tipologie:
	
			03 - Contributo in volume

File in questo prodotto:

Non ci sono file associati a questo prodotto.

Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/158511

Citazioni

ND

ND

3

social impact