A Heterogeneous Network Access Service Based on PERMIS and SAML

9 years 2 months ago
A Heterogeneous Network Access Service Based on PERMIS and SAML
Abstract The expansion of inter-organizational scenarios based on different authorization schemes involves the development of integration solutions allowing different authorization domains to share, in some way, protected resources. This paper analyzes different emerging technologies. On the one hand, we have two XML-based standards, the SAML standard, which is being widely accepted as a language to express and exchange authorization data, and the XACML standard, which constitutes a promising framework for access control policies. On the other hand, PERMIS is a trust management system for X.509 attribute certificates and includes a powerful authorization decision engine governed by the PERMIS XML policy. This paper presents a sample scenario where domains using these technologies can be integrated allowing, for example, the use of attribute certificates in a SAML environment and the utilization of the PERMIS authorization engine to decide about the disclosure or concealment of attr...
Gabriel López Millán, Óscar C
Added 27 Jun 2010
Updated 27 Jun 2010
Type Conference
Year 2005
Authors Gabriel López Millán, Óscar Cánovas Reverte, Antonio F. Gómez-Skarmeta, Sassa Otenko, David W. Chadwick
Comments (0)