Performance assessment of XACML authorizations for Supply Chain Traceability Web Services
作者: Miguel L. Pardal , Mark Harrison , Sanjay Sarma , Jose Alves Marques
DOI: 10.1109/CASON.2012.6412432
关键词: Service-oriented architecture 、 XACML 、 Web service 、 Database 、 Enterprise information security architecture 、 Supply chain management 、 Computer science 、 Access control 、 Traceability 、 Supply chain
摘要: Service-Oriented Architecture (SOA) and Web Services (WS) offer advanced flexibility interoperability capabilities. However they imply significant performance overheads that need to be carefully considered. Supply Chain Management (SCM) Traceability systems are an interesting domain for the use of WS technologies usually deemed too complex unnecessary in practical applications, especially regarding security. This paper presents externalized security architecture uses eXtensible Access Control Markup Language (XACML) authorization standard enforce visibility restrictions on trace-ability data a supply chain where multiple companies collaborate; assessed by comparing ‘raw’ implementations — Lists, Tokens, RDF Assertions with their XACML-equivalents.
sci-hub.se 参考文章(29)
Cosmin Condea, Oliver Kasten, Chris Kürschner, Frédéric Thiesse, Discovery service design in the EPCglobal network: towards full supply chain visibility the internet of things. pp. 19- 34 ,(2008)
Chris Kürschner, Cosmin Condea, Oliver Kasten, Frédéric Thiesse, Discovery Service Design in the EPCglobal Network the internet of things. pp. 19- 34 ,(2008) , 10.1007/978-3-540-78731-0_2
David L. Brock, Edmund W. Schuster, Stuart J. Allen, Global RFID: The Value of the EPCglobal Network for Supply Chain Management Springer-Verlag Berlin Heidelberg. ,(2007)
Vijay Machiraju, Harumi Kuno, Gustavo Alonso, Fabio Casati, Web Services: Concepts, Architectures and Applications ,(2003)
Thomas Erl, SOA Principles of Service Design ,(2007)
José J. Cantero, Miguel A. Guijarro, Antonio Plaza, Guillermo Arrebola, Janie Baños, A Design for Secure Discovery Services in the EPCglobal Architecture urif. pp. 183- 201 ,(2011) , 10.1007/978-3-642-03462-6_9
Dean Allemang, James Hendler, Semantic Web for the Working Ontologist: Effective Modeling in RDFS and OWL ,(2011)
Bernard Butler, Brendan Jennings, Dmitri Botvich, XACML policy performance evaluation using a flexible load testing framework computer and communications security. pp. 648- 650 ,(2010) , 10.1145/1866307.1866385
Christopher Alm, Roland Illig, Translating High-Level Authorization Constraints to XACML world congress on services. pp. 629- 636 ,(2010) , 10.1109/SERVICES.2010.62
Miguel L. Pardal, Mark Harrison, Sanjay Sarma, Jose Alves Marques, Enforcing RFID data visibility restrictions using XACML security policies international conference on rfid. pp. 413- 418 ,(2012) , 10.1109/RFID-TA.2012.6404558