HETEROGENEITY XACML POLICY EVALUATION ENGINE
Proceeding: The Second International Conference on Digital Enterprise and Information Systems (DEIS)Publication Date: 2013-03-04
Authors : Teo Poh Kuang Hamidah Ibrahim Nur Izura Udzir Fatimah Sidi;
Page : 230-238
Keywords : Distributed policy evaluation; Effectiveness; Heterogeneity conflicts; Conflict detection; XACML;
Abstract
The first and foremost challenge in establishing a policy evaluation engine is the conflict-free distributed policy evaluation process that governs all the information and resource exchange in distributed environment. However, most of the researcher efforts in policy evaluation have been devoted to the topic of efficiency. While efficiency is an important issue, the effectiveness of policy evaluation may be limited if the resulting systems are not implemented correctly. To tackle the effectiveness, we demonstrate that heterogeneity conflicts are among the issues that should be addressed in distributed policy evaluation. To the best of our knowledge, heterogeneity issue has not been taken into account by existing policy evaluation engines. Current policy evaluation engines only utilized simple string-based methods during the policy evaluation process. However, each organization manages its own vocabulary of policies to serve their particular authority principle concern. Thus, we cannot expect that policies belonging to different organizations are based on the same vocabulary. Therefore, unique name assumption is not able to solve heterogeneity issue. We proposed an effective heterogeneity XACML policy evaluation engine called HXPEngine to detect and resolve heterogeneity conflicts. The comparison with existing engines is conducted, and findings show that HXPEngine is more effective than the previous evaluation engine.
Other Latest Articles
- ESTIMATING MISSING VALUES OF SKYLINES IN INCOMPLETE DATABASE
- THE AFFECTS OF CACHING IN BROWSER STAGE ON THE PERFORMANCE OF WEB ITEMS DELIVERY
- STATIC CONVERSION OF DYNAMIC INFORMATION FOR MOBILE PHONE FORENSICS
- A NEW FRAMEWORK FOR SOFTWARE LIBRARY INVESTMENT METRICS
- ASSESSING THE STUDENTS' AWARENESS IN INFORMATION SECURITY THREATS IN E-LEARNING : A CASE STUDY
Last modified: 2013-06-20 21:07:38