Abstract
Enterprises are increasingly pervasive with users and services belonging to different domains. Cross-enterprise business collaborations are soaring and so are business relationships with complex access control rules. Business rules no longer come from a single source. There is a need for multiple administrators to define rules that apply to their part of the collaboration. Traditional access control models are not sufficient. This demonstrator illustrates an authorization service developed by Swedish SME Axiomatics. It implements the eXtended Access Control Markup Language (XACML), a policy- and rule-based access control language which allows the expression of fine-grained access control rules in distributed environments.
Chapter PDF
Similar content being viewed by others
References
The BEinGRID project, http://www.beingrid.eu
OASIS, XACML 3.0 (core specification and schemas) (May 18, 2008)
OASIS, XACML 3.0 administration and delegation profile, (October 10, 2007)
Gresty, C., et al.: Meeting customer needs. BT Technology Journal 26(1)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2009 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Rissanen, E., Brossard, D., Slabbert, A. (2009). Distributed Access Control Management – A XACML-Based Approach. In: Baresi, L., Chi, CH., Suzuki, J. (eds) Service-Oriented Computing. ServiceWave ICSOC 2009 2009. Lecture Notes in Computer Science, vol 5900. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-10383-4_47
Download citation
DOI: https://doi.org/10.1007/978-3-642-10383-4_47
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-10382-7
Online ISBN: 978-3-642-10383-4
eBook Packages: Computer ScienceComputer Science (R0)