EDITOR ZA XACML RBAC PROFIL
Ključne reči:
XACML, RBAC, politika, pravilo, uloga, permisija, kontrola pristupa
Apstrakt
U ovom radu je analiziran XACML (OASIS eXtensible Access Control Markup Language) sa akcentom na RBAC (Role Based Access Control) profil ovog jezika. Objašnjeni su teorijski koncepti vezani za kontrolu pristupa. Razmatrano je definisanje prava pristupa kroz politike ovog profila, kojim bi se ispunili zahtevi za osnovni i hijerarhijski RBAC. Dat je opis implementirane aplikacije i prikaz reprezentativnih delova koda.
Reference
[1] A. Poniszewska-Maranda, Management of access control in information system based on role concept, 2011.
[2] D. R. K. R. C. David F. Ferraiolo, Role-Based Access Control - Second edition, 2007.
[3] H. Bill Parducci, XACML v3.0 Core and Hierarchical Role Based Access Control RBAC) Profile Version 1.0 Committee Specification 02, 2014.
[4] S. I. T. I. Council, American National Standard for Information Technology – Role Based Access Control, 2004.
[5] The eXtensible Access Control Markup Language (XACML), Version 3.0, OASIS Standard, 2013.
[6] R. C. R. K. a. V. H. David Ferraiolo, Extensible Access Control Markup Language (XACML) and Next Generation Access Control (NGAC), 2016.
[7] S. M. Anne Anderson, Core and Hierarchical Role Based Access Control (RBAC) profile of XACML v2.0, 2005.
[2] D. R. K. R. C. David F. Ferraiolo, Role-Based Access Control - Second edition, 2007.
[3] H. Bill Parducci, XACML v3.0 Core and Hierarchical Role Based Access Control RBAC) Profile Version 1.0 Committee Specification 02, 2014.
[4] S. I. T. I. Council, American National Standard for Information Technology – Role Based Access Control, 2004.
[5] The eXtensible Access Control Markup Language (XACML), Version 3.0, OASIS Standard, 2013.
[6] R. C. R. K. a. V. H. David Ferraiolo, Extensible Access Control Markup Language (XACML) and Next Generation Access Control (NGAC), 2016.
[7] S. M. Anne Anderson, Core and Hierarchical Role Based Access Control (RBAC) profile of XACML v2.0, 2005.
Objavljeno
2021-11-08
Sekcija
Elektrotehničko i računarsko inženjerstvo
