SBA-XACML
Policy-based computing is taking an increasing role in providing real-time decisions and governing the systematic interaction among distributed Web services. XACML (eXtensible Access Control Markup Language) has been known as the de facto standard widely used by many vendors for specifying access an...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | article |
| Published: |
2015
|
| Online Access: | http://hdl.handle.net/10725/2672 http://dx.doi.org/10.1016/j.eswa.2014.07.031 http://www.sciencedirect.com/science/article/pii/S0957417414004370 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1864513459048153088 |
|---|---|
| author | Mourad, Azzam |
| author2 | Jebbaoui, Hussein |
| author2_role | author |
| author_facet | Mourad, Azzam Jebbaoui, Hussein |
| author_role | author |
| dc.creator.none.fl_str_mv | Mourad, Azzam Jebbaoui, Hussein |
| dc.date.none.fl_str_mv | 2015-11-24T10:39:38Z 2015-11-24T10:39:38Z 2015 2015-11-24 |
| dc.identifier.none.fl_str_mv | 0957-4174 http://hdl.handle.net/10725/2672 http://dx.doi.org/10.1016/j.eswa.2014.07.031 Mourad, A., & Jebbaoui, H. (2015). SBA-XACML: Set-based approach providing efficient policy decision process for accessing Web services. Expert Systems with Applications, 42(1), 165-178. http://www.sciencedirect.com/science/article/pii/S0957417414004370 |
| dc.language.none.fl_str_mv | en |
| dc.relation.none.fl_str_mv | Expert Systems with Applications |
| dc.rights.*.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.title.none.fl_str_mv | SBA-XACML Set-based approach providing efficient policy decision process for accessing Web services |
| dc.type.none.fl_str_mv | Article info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/article |
| description | Policy-based computing is taking an increasing role in providing real-time decisions and governing the systematic interaction among distributed Web services. XACML (eXtensible Access Control Markup Language) has been known as the de facto standard widely used by many vendors for specifying access and context-aware policies. Accordingly, the size and complexity of XACML policies are significantly growing to cope with the evolution of web-based applications and services. This growth raised many concerns related to the efficiency of real-time decision process (i.e. policy evaluation) and the correctness of complex policies. This paper is addressing these concerns through the elaboration of SBA-XACML, a novel Set-Based Algebra (i.e. SBA) scheme that provides efficient evaluation of XACML policies. Our approach constitutes of elaborating (1) a set-based language that covers all the XACML components and establish an intermediate layer to which policies are automatically converted, and (2) a semantics-based policy evaluation that provides better performance compared to the industrial standard Sun Policy Decision Point (PDP) and its corresponding ameliorations. Experiments have been conducted on real-life and synthetic XACML policies in order to demonstrate the efficiency, relevance and scalability of our proposition. The experimental results explore that SBA-XACML evaluation of large and small sizes policies offers better performance than the current approaches, by a factor ranging between 2.4 and 15 times faster depending on policy size. |
| eu_rights_str_mv | openAccess |
| format | article |
| id | LAURepo_b963efc76f51d13e675c35e8a4c6ba31 |
| identifier_str_mv | 0957-4174 Mourad, A., & Jebbaoui, H. (2015). SBA-XACML: Set-based approach providing efficient policy decision process for accessing Web services. Expert Systems with Applications, 42(1), 165-178. |
| language_invalid_str_mv | en |
| network_acronym_str | LAURepo |
| network_name_str | Lebanese American University repository |
| oai_identifier_str | oai:laur.lau.edu.lb:10725/2672 |
| publishDate | 2015 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| spelling | SBA-XACMLSet-based approach providing efficient policy decision process for accessing Web servicesMourad, AzzamJebbaoui, HusseinPolicy-based computing is taking an increasing role in providing real-time decisions and governing the systematic interaction among distributed Web services. XACML (eXtensible Access Control Markup Language) has been known as the de facto standard widely used by many vendors for specifying access and context-aware policies. Accordingly, the size and complexity of XACML policies are significantly growing to cope with the evolution of web-based applications and services. This growth raised many concerns related to the efficiency of real-time decision process (i.e. policy evaluation) and the correctness of complex policies. This paper is addressing these concerns through the elaboration of SBA-XACML, a novel Set-Based Algebra (i.e. SBA) scheme that provides efficient evaluation of XACML policies. Our approach constitutes of elaborating (1) a set-based language that covers all the XACML components and establish an intermediate layer to which policies are automatically converted, and (2) a semantics-based policy evaluation that provides better performance compared to the industrial standard Sun Policy Decision Point (PDP) and its corresponding ameliorations. Experiments have been conducted on real-life and synthetic XACML policies in order to demonstrate the efficiency, relevance and scalability of our proposition. The experimental results explore that SBA-XACML evaluation of large and small sizes policies offers better performance than the current approaches, by a factor ranging between 2.4 and 15 times faster depending on policy size.PublishedN/A2015-11-24T10:39:38Z2015-11-24T10:39:38Z20152015-11-24Articleinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/article0957-4174http://hdl.handle.net/10725/2672http://dx.doi.org/10.1016/j.eswa.2014.07.031Mourad, A., & Jebbaoui, H. (2015). SBA-XACML: Set-based approach providing efficient policy decision process for accessing Web services. Expert Systems with Applications, 42(1), 165-178.http://www.sciencedirect.com/science/article/pii/S0957417414004370enExpert Systems with Applicationsinfo:eu-repo/semantics/openAccessoai:laur.lau.edu.lb:10725/26722020-05-19T09:36:48Z |
| spellingShingle | SBA-XACML Mourad, Azzam |
| status_str | publishedVersion |
| title | SBA-XACML |
| title_full | SBA-XACML |
| title_fullStr | SBA-XACML |
| title_full_unstemmed | SBA-XACML |
| title_short | SBA-XACML |
| title_sort | SBA-XACML |
| url | http://hdl.handle.net/10725/2672 http://dx.doi.org/10.1016/j.eswa.2014.07.031 http://www.sciencedirect.com/science/article/pii/S0957417414004370 |