Traditional access control solutions, based on preliminary identification and authentication of the access requester, are not adequate for open Web service systems, where servers generally do not have prior knowledge of the requesters. In this paper, we provide some extensions to the eXtensible Access ControlMarkup Language (XACML), which is the most significant and emerging solution for controlling access in an interoperable and flexible way, to make it easily deployable and suitable for open Web-based systems.
Extending XACML for open Web-based scenarios / C.A. Ardagna, S. De Capitani di Vimercati, E. Pedrini, S. Paraboschi, P. Samarati, M. Verdicchio - In: W3C workshop on access control application scenarios : 17-18 november 2009, Luxembourg : proceedingsBergamo : W3C, 2009. - ISBN 9788897253006. (( convegno W3C Workshop on Access Control Application Scenarios tenutosi a Luxembourg nel 2009.
Extending XACML for open Web-based scenarios
C.A. ArdagnaPrimo
;S. De Capitani di VimercatiSecondo
;E. Pedrini;P. SamaratiPenultimo
;
2009
Abstract
Traditional access control solutions, based on preliminary identification and authentication of the access requester, are not adequate for open Web service systems, where servers generally do not have prior knowledge of the requesters. In this paper, we provide some extensions to the eXtensible Access ControlMarkup Language (XACML), which is the most significant and emerging solution for controlling access in an interoperable and flexible way, to make it easily deployable and suitable for open Web-based systems.
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
