XeNA: An access negotiation framework using XACML

Diala Abi Haidar; Nora Cuppens - Boulahia; Frédéric Cuppens; Hervé Debar

doi:10.1007/s12243-008-0050-5

XeNA: An access negotiation framework using XACML

Diala Abi Haidar
, Nora Cuppens - Boulahia
, Frédéric Cuppens
, Hervé Debar

Research output: Contribution to journal › Article › peer-review

Abstract

XeNA is a new model for the negotiation of access within an extended eXtensible Access Control Markup Language (XACML) architecture. We bring together trust management through a negotiation process and access control management within the same architecture. The negotiation process based on resource classification methodology occurs before the access control management. A negotiation module at the core of this negotiation process is in charge of collecting resources required to establish a level of trust and to insure a successful evaluation of access. The access control management is based on an extended Role-Based Access Control (RBAC) profile of XACML. This extended profile responds to advanced access control requirements and allows the expression of several access control models within XACML.

Original language	English
Pages (from-to)	155-169
Number of pages	15
Journal	Annales des Telecommunications/Annals of Telecommunications
Volume	64
Issue number	1-2
DOIs	https://doi.org/10.1007/s12243-008-0050-5
Publication status	Published - 1 Feb 2009
Externally published	Yes

Keywords

Access control
Interoperability
OrBAC
RBAC
Trust management
XACML

Access to Document

10.1007/s12243-008-0050-5

Cite this

@article{57fe25f7585f4c17b102ab54c02ae6ec,

title = "XeNA: An access negotiation framework using XACML",

abstract = "XeNA is a new model for the negotiation of access within an extended eXtensible Access Control Markup Language (XACML) architecture. We bring together trust management through a negotiation process and access control management within the same architecture. The negotiation process based on resource classification methodology occurs before the access control management. A negotiation module at the core of this negotiation process is in charge of collecting resources required to establish a level of trust and to insure a successful evaluation of access. The access control management is based on an extended Role-Based Access Control (RBAC) profile of XACML. This extended profile responds to advanced access control requirements and allows the expression of several access control models within XACML.",

keywords = "Access control, Interoperability, OrBAC, RBAC, Trust management, XACML",

author = "\{Abi Haidar\}, Diala and \{Cuppens - Boulahia\}, Nora and Fr{\'e}d{\'e}ric Cuppens and Herv{\'e} Debar",

note = "Funding Information: Acknowledgements The work presented in this paper is supported by funding from the ANR RNRT POLITESS Project.",

year = "2009",

month = feb,

day = "1",

doi = "10.1007/s12243-008-0050-5",

language = "English",

volume = "64",

pages = "155--169",

journal = "Annales des Telecommunications/Annals of Telecommunications",

issn = "0003-4347",

number = "1-2",

}

TY - JOUR

T1 - XeNA

T2 - An access negotiation framework using XACML

AU - Abi Haidar, Diala

AU - Cuppens - Boulahia, Nora

AU - Cuppens, Frédéric

AU - Debar, Hervé

N1 - Funding Information: Acknowledgements The work presented in this paper is supported by funding from the ANR RNRT POLITESS Project.

PY - 2009/2/1

Y1 - 2009/2/1

N2 - XeNA is a new model for the negotiation of access within an extended eXtensible Access Control Markup Language (XACML) architecture. We bring together trust management through a negotiation process and access control management within the same architecture. The negotiation process based on resource classification methodology occurs before the access control management. A negotiation module at the core of this negotiation process is in charge of collecting resources required to establish a level of trust and to insure a successful evaluation of access. The access control management is based on an extended Role-Based Access Control (RBAC) profile of XACML. This extended profile responds to advanced access control requirements and allows the expression of several access control models within XACML.

AB - XeNA is a new model for the negotiation of access within an extended eXtensible Access Control Markup Language (XACML) architecture. We bring together trust management through a negotiation process and access control management within the same architecture. The negotiation process based on resource classification methodology occurs before the access control management. A negotiation module at the core of this negotiation process is in charge of collecting resources required to establish a level of trust and to insure a successful evaluation of access. The access control management is based on an extended Role-Based Access Control (RBAC) profile of XACML. This extended profile responds to advanced access control requirements and allows the expression of several access control models within XACML.

KW - Access control

KW - Interoperability

KW - OrBAC

KW - RBAC

KW - Trust management

KW - XACML

U2 - 10.1007/s12243-008-0050-5

DO - 10.1007/s12243-008-0050-5

M3 - Article

AN - SCOPUS:60849083522

SN - 0003-4347

VL - 64

SP - 155

EP - 169

JO - Annales des Telecommunications/Annals of Telecommunications

JF - Annales des Telecommunications/Annals of Telecommunications

IS - 1-2

ER -

XeNA: An access negotiation framework using XACML

Abstract

Keywords

Access to Document

Fingerprint

Cite this