Research and application of XACML-based fine-grained security policy for distributed system

Author

Zhang Sainan ; Hong Yu

Author_Institution

Coll. of Command Inf. Syst., PLA Univ. of Sci. & Technol., Nanjing, China

fYear

2013

fDate

20-22 Dec. 2013

Firstpage

1848

Lastpage

1851

Abstract

In distributed system development security is a major design criteria. However, the present software system modeling does not deal with security. System security policies and mechanisms often become the supplement at the end of system development. In this paper, a software development process is considered two common stages which are functional requirement analysis stage and system design stage. We extend the UML notation to model the security requirements which is generated from the function modeling process. The access control UML models are finally used to generate access control policies which can be described by XACML and deployed into the enforcement infrastructure. Finally, the decisions for users´ requests will be made through Sun´s XACML Implementation.

Keywords

Unified Modeling Language; authorisation; distributed processing; formal specification; software engineering; Sun XACML; UML notation; access control UML models; access control policies; distributed system; fine-grained security policy; function modeling process; functional requirement analysis stage; software development process; system design stage; Access control; Analytical models; Computational modeling; Educational institutions; Software; Unified modeling language; UML; XACML; access control; security;

fLanguage

English

Publisher

ieee

Conference_Titel

Mechatronic Sciences, Electric Engineering and Computer (MEC), Proceedings 2013 International Conference on

Conference_Location

Shengyang

Print_ISBN

978-1-4799-2564-3

Type

conf

DOI

10.1109/MEC.2013.6885354

Filename

6885354