Title :
Research and application of XACML-based fine-grained security policy for distributed system
Author :
Zhang Sainan ; Hong Yu
Author_Institution :
Coll. of Command Inf. Syst., PLA Univ. of Sci. & Technol., Nanjing, China
Abstract :
In distributed system development security is a major design criteria. However, the present software system modeling does not deal with security. System security policies and mechanisms often become the supplement at the end of system development. In this paper, a software development process is considered two common stages which are functional requirement analysis stage and system design stage. We extend the UML notation to model the security requirements which is generated from the function modeling process. The access control UML models are finally used to generate access control policies which can be described by XACML and deployed into the enforcement infrastructure. Finally, the decisions for users´ requests will be made through Sun´s XACML Implementation.
Keywords :
Unified Modeling Language; authorisation; distributed processing; formal specification; software engineering; Sun XACML; UML notation; access control UML models; access control policies; distributed system; fine-grained security policy; function modeling process; functional requirement analysis stage; software development process; system design stage; Access control; Analytical models; Computational modeling; Educational institutions; Software; Unified modeling language; UML; XACML; access control; security;
Conference_Titel :
Mechatronic Sciences, Electric Engineering and Computer (MEC), Proceedings 2013 International Conference on
Conference_Location :
Shengyang
Print_ISBN :
978-1-4799-2564-3
DOI :
10.1109/MEC.2013.6885354
