An application of directory service markup language (DSML) for role-based access control (RBAC)

Dongwan Shin, Gail Joon Ahn, Joon S. Park

Research output: Chapter in Book/Entry/PoemConference contribution

8 Scopus citations

Abstract

Directory service markup language (DSML) prescribes how to manipulate directory services information in XML, and thus it facilitates sharing of directory information as XML fragments among XML-based applications. In this paper, we describe how to leverage DSML for role-based access control on XML-based web applications which often need collaboration within or beyond a single enterprise boundary. Compared with previous works in this area, we show that our approach can solve the problems of a previous LDAP-oriented solution. We discuss the security architecture based upon server-pull model and its components. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Finally, several issues from our experience are discussed as well.

Original languageEnglish (US)
Title of host publicationProceedings - IEEE Computer Society's International Computer Software and Applications Conference
Pages934-939
Number of pages6
DOIs
StatePublished - 2002
Externally publishedYes
Event26th Annual International Computer Software and Applications Conference - Oxford, United Kingdom
Duration: Aug 26 2002Aug 29 2002

Publication series

NameProceedings - IEEE Computer Society's International Computer Software and Applications Conference
ISSN (Print)0730-3157

Other

Other26th Annual International Computer Software and Applications Conference
Country/TerritoryUnited Kingdom
CityOxford
Period8/26/028/29/02

Keywords

  • Access control
  • Directory service
  • Directory service markup language (DSML)
  • Role-based

ASJC Scopus subject areas

  • Software
  • Computer Science Applications

Fingerprint

Dive into the research topics of 'An application of directory service markup language (DSML) for role-based access control (RBAC)'. Together they form a unique fingerprint.

Cite this