摘要: eXtensible Access Control Markup Language (XACML), an OASIS standard, is the most widely used policy specifica- tion language for access control. Its simplicity in syntax and strength coverage makes it suitable diverse en- vironments such as Service Oriented Architectures (SOAs) P2P systems. There are different implementations of XACML available. Some these open source some others proprietary. In this work we intended to shed lights performance issues engines. We tested 3 with policy/request settings. Our experiments revealed important points be taken into consideration when deploying based control system. Besides, our results can hints by writers system developers efficient authorization services.
acm.org
sci-hub.se 参考文章(4)
Nuo Li, JeeHyun Hwang, Tao Xie, Multiple-implementation testing for XACML implementations Proceedings of the 2008 workshop on Testing, analysis, and verification of web services and applications - TAV-WEB '08. pp. 27- 33 ,(2008) , 10.1145/1390832.1390837
Alex X. Liu, Fei Chen, JeeHyun Hwang, Tao Xie, Xengine Proceedings of the 2008 ACM SIGMETRICS international conference on Measurement and modeling of computer systems - SIGMETRICS '08. ,vol. 36, pp. 265- 276 ,(2008) , 10.1145/1375457.1375488
B. Crispo, S. Sivasubramanian, P. Mazzoleni, E. Bertino, P-Hera: scalable fine-grained access control for P2P infrastructures international conference on parallel and distributed systems. ,vol. 1, pp. 585- 591 ,(2005) , 10.1109/ICPADS.2005.215
Dan Lin, Prathima Rao, Elisa Bertino, Jorge Lobo, An approach to evaluate policy similarity symposium on access control models and technologies. pp. 1- 10 ,(2007) , 10.1145/1266840.1266842