Toward an abstract language on top of XACML for web services security

Azzam Mourad, Hadi Otrok, Hamdi Yahyaoui, Lama Baajour

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

3 Scopus citations

Abstract

We introduce in this paper an abstract language on top of XACML (eXtensible Access Control Markup Language) for web services security. It is based on the automatic generation of XACML security policies from abstract XACML profile(s). Our proposed approach allows first to specify the XACML profiles, which are then translated using our intended compiler into XACML security policies. The main contributions of our approach are: (1) Describing dynamic security policies using an abstract and user friendly profile language on top of XACML, (2) generating automatically the the XACML policies and (3) separating the business and security concerns of composite web services, and hence developing them separately. Our solution address the problems related to the complexity and difficulty of specifying security policies in XACML and other standard languages. We tested the feasibility of our approach by developing the library system (LB) that is composed of several Web services and applying/realizing our approach to enforce security.

Original languageBritish English
Title of host publication2011 International Conference for Internet Technology and Secured Transactions, ICITST 2011
Pages254-259
Number of pages6
StatePublished - 2011
Event2011 International Conference for Internet Technology and Secured Transactions, ICITST 2011 - Abu Dhabi, United Arab Emirates
Duration: 11 Dec 201114 Dec 2011

Publication series

Name2011 International Conference for Internet Technology and Secured Transactions, ICITST 2011

Conference

Conference2011 International Conference for Internet Technology and Secured Transactions, ICITST 2011
Country/TerritoryUnited Arab Emirates
CityAbu Dhabi
Period11/12/1114/12/11

Keywords

  • RBAC
  • Security Policies
  • Web Services Security
  • XACML

Fingerprint

Dive into the research topics of 'Toward an abstract language on top of XACML for web services security'. Together they form a unique fingerprint.

Cite this