Access Control Policy Combining: Theory Meets Practice
Abstract
Many access control policy languages, e.g., XACML, allow a policy to contain multiple sub-policies, and the result of the policy on a request is determined by combining the results of the sub-policies according to some policy combining algorithms (PCAs). Existing access control policy languages, however, do not provide a formal language for specifying PCAs. As a result, it is difficult to extend them with new PCAs. While several formal policy combining algebras have been proposed, they did not address important practical issues such as policy evaluation errors and obligations; furthermore, they cannot express PCAs that consider all sub-policies as a whole (e.g., weak majority or strong majority). We propose a policy combining language PCL, which can succinctly and precisely express a variety of PCAs. PCL represents an advancement both in terms of theory and practice. It is based on automata theory and linear constraints, and is more expressive than existing approaches. We have implemented PCL and integrated it with SUN's XACML implementation. With PCL, a policy evaluation engine only needs to understand PCL to evaluate any PCA specified in it.
Recommended Citation
N. Li et al., "Access Control Policy Combining: Theory Meets Practice," Proceedings of the 14th ACM symposium on Access control models and technologies, Association for Computing Machinery (ACM), Jan 2009.
The definitive version is available at https://doi.org/10.1145/1542207.1542229
Department(s)
Computer Science
Keywords and Phrases
XACML; Languages; Policy Combination; Security
Document Type
Article - Conference proceedings
Document Version
Citation
File Type
text
Language(s)
English
Rights
© 2009 Association for Computing Machinery (ACM), All rights reserved.
Publication Date
01 Jan 2009
