Gesellschaft fr Informatik e.V.

Lecture Notes in Informatics

Information Systems Technology and its Applications, 3rd International Conference ISTA'2004, June 15-17, 2004, Salt Lake City, Utah, USA P-48, 93-106 (2004).

GI, Gesellschaft für Informatik, Bonn


Terry A. Halpin, Stephen W. Liddle, Heinrich C. Mayr Anatoly E. Doroshenko (eds.)

Copyright © GI, Gesellschaft für Informatik, Bonn


An access control service for dynamic and hierarchical resources:Declarative model and implementation on top of XACML

Giuseppe Psaila and Fulvio Biondi


The increasing complexity of (distributed) information systems requires new solutions for dealing with access control problems. In particular, information systems are based on a large number of resources, with very complex structure, that must be accessed by a large variety of users. Traditional and instance based solutions are not adequate. In this paper, we propose a new approach to the problem. First of all, we define an access control model which is declarative, modular, hierarchical and instance independent, so that it is suitable for highly dynamic contexts. Then, we reports about the implementation of a Profile Service, which effectively exploits the XACML technology to simplify and shorten the development.

Full Text: PDF

GI, Gesellschaft für Informatik, Bonn
ISBN 3-88579-377-6

Last changed 24.01.2012 21:46:07