Software Engineering

Open Access Open Access  Restricted Access Subscription Access
Open Access Open Access Open Access  Restricted Access Restricted Access Subscription Access

SpatioTemporal RBAC Profile for XACML


Affiliations
1 Cairo University, Egypt
2 Anna University, India
     

   Subscribe/Renew Journal


XACML (extensible Access Control Markup Language) is an open standard language based on XML. It’s the de facto language designed to describe the security policy and the access permission of network service, digital rights management and enterprise security applications information. RBAC profile of XACML is used to express policies that use role based access control. However, RBAC access decision is not influenced by the spatiotemporal context of both the subjects and the objects in the system. In this paper, we extend this profile with spatiotemporal RBAC profile. It incorporates different constraints dependent on spatiotemporal conditions. The spatiotemporal conditions allow to enhance the access control of XACML by specifying a wide variety of spatiotemporal access control policies. The extension facilitates the administration by providing a convenient and efficient way of managing access control policies.


Keywords

XACML, RBAC, Access Control, Spatiotempo-Ral Policy.
User
Subscription Login to verify subscription
Notifications
Font Size

Abstract Views: 127

PDF Views: 3




  • SpatioTemporal RBAC Profile for XACML

Abstract Views: 127  |  PDF Views: 3

Authors

A. A. Abd El-Aziz
Cairo University, Egypt
A. Kannan
Anna University, India

Abstract


XACML (extensible Access Control Markup Language) is an open standard language based on XML. It’s the de facto language designed to describe the security policy and the access permission of network service, digital rights management and enterprise security applications information. RBAC profile of XACML is used to express policies that use role based access control. However, RBAC access decision is not influenced by the spatiotemporal context of both the subjects and the objects in the system. In this paper, we extend this profile with spatiotemporal RBAC profile. It incorporates different constraints dependent on spatiotemporal conditions. The spatiotemporal conditions allow to enhance the access control of XACML by specifying a wide variety of spatiotemporal access control policies. The extension facilitates the administration by providing a convenient and efficient way of managing access control policies.


Keywords


XACML, RBAC, Access Control, Spatiotempo-Ral Policy.