Defining and Enforcing XACML Role-based Security Policies within an XML Security Framework

Alberto De la Rosa Algarín; Timoteus B. Ziminski; Steven A. Demurjian; Robert Kuykendall; Yaira K. Rivera Sánchez

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

Defining and Enforcing XACML Role-based Security Policies within an XML Security Framework

Topics: Authentication and Access Control; Privacy and Confidentiality; Web Security and Privacy; XML and Data Management

In Proceedings of the 9th International Conference on Web Information Systems and Technologies WEBIST - Volume 1, 16-25, 2013 , Aachen, Germany

Authors: Alberto De la Rosa Algarín ¹ ; Timoteus B. Ziminski ¹ ; Steven A. Demurjian ¹ ; Robert Kuykendall ² and Yaira K. Rivera Sánchez ¹

Affiliations: ¹ University of Connecticut, United States ; ² Texas State University, United States

Keyword(s): Security and Policy Modeling, Security Policies, XML, XACML, Role-based Access Control.

Related Ontology Subjects/Areas/Topics: Access Control ; Data Engineering ; Databases and Data Security ; Information and Systems Security ; Internet Technology ; Web Information Systems and Technologies ; Web Security and Privacy ; XML and Data Management

Abstract: Securing electronic data has evolved into an important requirement in domains such as health care informatics, with the eXtensible Markup Language (XML) utilized to create standards such as the Clinical Document Architecture and the Continuity of Care Record, which have led to a need for approaches to secure XML schemas and documents. In this paper, we present a method for generating eXtensible Access Control Markup Language (XACML) policies that target XML schemas and their instances, allowing instances to be customized for users depending on their roles. To do so, we extend the Unified Modeling Language (UML) with two new diagrams to model XML: the XML Schema Class Diagram (XSCD) to define the structure of an XML document in UML style; and the XML Role-Slice Diagram (XRSD) to define roles and associated privileges at a granular access control level. In the process, we separate the XML schemas of an application from its security definition in XRSD. To demonstrate the enforcement of our approach, we utilize a personal health assistant mobile application for health information management, which allows patients to share personal health data with providers utilizing XACML for security definition. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.117.183.150

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

De la Rosa Algarín, A.; B. Ziminski, T.; A. Demurjian, S.; Kuykendall, R. and K. Rivera Sánchez, Y. (2013). Defining and Enforcing XACML Role-based Security Policies within an XML Security Framework. In Proceedings of the 9th International Conference on Web Information Systems and Technologies - WEBIST; ISBN 978-989-8565-54-9; ISSN 2184-3252, SciTePress, pages 16-25. DOI: 10.5220/0004366200160025

@conference{webist13,
author={Alberto {De la Rosa Algarín}. and Timoteus {B. Ziminski}. and Steven {A. Demurjian}. and Robert Kuykendall. and Yaira {K. Rivera Sánchez}.},
title={Defining and Enforcing XACML Role-based Security Policies within an XML Security Framework},
booktitle={Proceedings of the 9th International Conference on Web Information Systems and Technologies - WEBIST},
year={2013},
pages={16-25},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004366200160025},
isbn={978-989-8565-54-9},
issn={2184-3252},
}

TY - CONF

JO - Proceedings of the 9th International Conference on Web Information Systems and Technologies - WEBIST
TI - Defining and Enforcing XACML Role-based Security Policies within an XML Security Framework
SN - 978-989-8565-54-9
IS - 2184-3252
AU - De la Rosa Algarín, A.
AU - B. Ziminski, T.
AU - A. Demurjian, S.
AU - Kuykendall, R.
AU - K. Rivera Sánchez, Y.
PY - 2013
SP - 16
EP - 25
DO - 10.5220/0004366200160025
PB - SciTePress