XACML policy performance evaluation using a flexible load testing framework
作者: Bernard Butler , Brendan Jennings , Dmitri Botvich
关键词:
摘要: The performance and scalability of access control systems is growing more important as organisations deploy ever complex communications content management systems. Fine-grained becoming pervasive, so decisions are frequent policy sets larger. We outline a flexible testing framework that accepts XACML PDP implementations (in the server component) submits representative requests (from client in temporal ordering. includes instrumentation analysis modules to support experiments. describe an initial realization report on experiments comparing SunXACML Enterprise PDPs.
core.ac.uk
acm.org
sci-hub.se 参考文章(6)
Evan Martin, Tao Xie, Ting Yu, Defining and measuring policy coverage in testing access control policies international conference on information and communication security. ,vol. 4307, pp. 139- 158 ,(2006) , 10.1007/11935308_11
Evan Martin, Automated test generation for access control policies conference on object-oriented programming systems, languages, and applications. pp. 752- 753 ,(2006) , 10.1145/1176617.1176708
Vladimir Kolovski, James Hendler, Bijan Parsia, Analyzing web access control policies the web conference. pp. 677- 686 ,(2007) , 10.1145/1242572.1242664
Said Marouf, Mohamed Shehab, Anna Squicciarini, Smitha Sundareswaran, Statistics & Clustering Based Framework for Efficient XACML Policy Evaluation ieee international symposium on policies for distributed systems and networks. pp. 118- 125 ,(2009) , 10.1109/POLICY.2009.36
Alex X. Liu, Fei Chen, JeeHyun Hwang, Tao Xie, Xengine Proceedings of the 2008 ACM SIGMETRICS international conference on Measurement and modeling of computer systems - SIGMETRICS '08. ,vol. 36, pp. 265- 276 ,(2008) , 10.1145/1375457.1375488
D.F.C. Brewer, M.J. Nash, The Chinese Wall security policy ieee symposium on security and privacy. pp. 206- 214 ,(1989) , 10.1109/SECPRI.1989.36295