xfACL: an extensible functional language for access control
Abstract
The main goal of modern access control policy languages is to offer high-level languages, by using which security officers and application developers can express a large variety of access restrictions and isolate the security logic from the application logic. However, the current state-of-the-art language, XACML, suffers from some design flaws and lacks important features, such as those that characterize the RBAC model. Therefore, we propose an access control language that combines the benefits of both XACML and RBAC while avoiding their drawbacks.
Keywords
access control, language, security and protection standardization
Date of this Version
2011
COinS
Comments
SACMAT '11 Proceedings of the 16th ACM symposium on Access control models and technologies