.

SBA-XACML

LAUR Repository

Show simple item record

dc.contributor.author Mourad, Azzam
dc.contributor.author Jebbaoui, Hussein
dc.date.accessioned 2015-11-24T10:39:38Z
dc.date.available 2015-11-24T10:39:38Z
dc.date.copyright 2015
dc.date.issued 2015-11-24
dc.identifier.issn 0957-4174 en_US
dc.identifier.uri http://hdl.handle.net/10725/2672
dc.description.abstract Policy-based computing is taking an increasing role in providing real-time decisions and governing the systematic interaction among distributed Web services. XACML (eXtensible Access Control Markup Language) has been known as the de facto standard widely used by many vendors for specifying access and context-aware policies. Accordingly, the size and complexity of XACML policies are significantly growing to cope with the evolution of web-based applications and services. This growth raised many concerns related to the efficiency of real-time decision process (i.e. policy evaluation) and the correctness of complex policies. This paper is addressing these concerns through the elaboration of SBA-XACML, a novel Set-Based Algebra (i.e. SBA) scheme that provides efficient evaluation of XACML policies. Our approach constitutes of elaborating (1) a set-based language that covers all the XACML components and establish an intermediate layer to which policies are automatically converted, and (2) a semantics-based policy evaluation that provides better performance compared to the industrial standard Sun Policy Decision Point (PDP) and its corresponding ameliorations. Experiments have been conducted on real-life and synthetic XACML policies in order to demonstrate the efficiency, relevance and scalability of our proposition. The experimental results explore that SBA-XACML evaluation of large and small sizes policies offers better performance than the current approaches, by a factor ranging between 2.4 and 15 times faster depending on policy size. en_US
dc.language.iso en en_US
dc.title SBA-XACML en_US
dc.type Article en_US
dc.description.version Published en_US
dc.title.subtitle Set-based approach providing efficient policy decision process for accessing Web services en_US
dc.author.school SAS en_US
dc.author.idnumber 200904893 en_US
dc.author.woa N/A en_US
dc.author.department Computer Science and Mathematics en_US
dc.description.embargo N/A en_US
dc.relation.journal Expert Systems with Applications en_US
dc.journal.volume 42 en_US
dc.journal.issue 1 en_US
dc.article.pages 165-178 en_US
dc.keywords Web services en_US
dc.keywords Security en_US
dc.keywords Set-based algebra en_US
dc.keywords Policy evaluation en_US
dc.keywords Real-time decision en_US
dc.keywords Access control en_US
dc.keywords XACML en_US
dc.identifier.doi http://dx.doi.org/10.1016/j.eswa.2014.07.031 en_US
dc.identifier.ctation Mourad, A., & Jebbaoui, H. (2015). SBA-XACML: Set-based approach providing efficient policy decision process for accessing Web services. Expert Systems with Applications, 42(1), 165-178. en_US
dc.author.email azzam.mourad@lau.edu.lb
dc.identifier.url http://www.sciencedirect.com/science/article/pii/S0957417414004370
dc.orcid.id https://orcid.org/0000-0001-9434-5322


Files in this item

Files Size Format View

There are no files associated with this item.

This item appears in the following Collection(s)

Show simple item record

Search LAUR


Advanced Search

Browse

My Account