Title

xfACL: an extensible functional language for access control

Abstract

The main goal of modern access control policy languages is to offer high-level languages, by using which security officers and application developers can express a large variety of access restrictions and isolate the security logic from the application logic. However, the current state-of-the-art language, XACML, suffers from some design flaws and lacks important features, such as those that characterize the RBAC model. Therefore, we propose an access control language that combines the benefits of both XACML and RBAC while avoiding their drawbacks.

Keywords

access control, language, security and protection standardization

Date of this Version

2011

Comments

SACMAT '11 Proceedings of the 16th ACM symposium on Access control models and technologies

Share

COinS