Policy conflict management using XACML

Author

Shamoon, I. ; Rajpoot, Q. ; Shibli, A.

Author_Institution

Sch. of Electr. Eng. & Comput. Sci., Nat. Univ. of Sci. & Technol., Islamabad, Pakistan

fYear

2012

fDate

27-29 Aug. 2012

Firstpage

287

Lastpage

291

Abstract

Different access control models are being used in multi-user environments based on application and organizational requirements. During lifetime of an application various access control policies are being created. Various policies may result into access conflicts since administrators and processes of an organizations tends to change frequently. Access Control Lists (ACL), a widely adopted access control mechanism is unable to handle access control conflicts. There is a need to have mechanism that automatically detect conflicts during policy generation and rectify them. We proposed policy conflict management solution using XACML. Proposed solution has been incorporated in OpenLDAP and proved to be useful to mediate access control conflicts that eventually results into reduction of access control based security vulnerabilities in the system.

Keywords

XML; authorisation; organisational aspects; ACL; OpenLDAP; XACML; access conflicts; access control based security vulnerabilities; access control lists; access control models; application requirements; multiuser environments; organizational requirements; policy conflict management; policy generation; Authorization; Heuristic algorithms; Organizations; Principal component analysis; Standards;

fLanguage

English

Publisher

ieee

Conference_Titel

Computing and Networking Technology (ICCNT), 2012 8th International Conference on

Conference_Location

Gueongju

Print_ISBN

978-1-4673-1326-1

Type

conf

Filename

6418669