A Comparative Study of Access Control Languages
In this paper, we compare three open source access control languages, XACML, JAAS and Java ACL. In addition to a conceptual analysis, we use a web-based health care system as a common application, in which controlled access is implemented through each of the languages. We compare the languages using standard software metrics, such as reusability, policy expressiveness, extensibility, error handling, and programmatic control. The results of the comparative study indicate a high degree of variance in the three languages. They can serve as a useful guide for software developers to select an access control language that best meets their requirements.
access control authentication authorization software metrics XACML JAAS ACL
Sathish Pinagapani Dianxiang Xu Jun Kong
Department of Computer Science North Dakota State University Fargo, North Dakota, USA National Center for the Protection of Financial Infrastructure Dakota State University Madison, Sout
国际会议
上海
英文
407-412
2009-07-08(万方平台首次上网日期,不代表论文的发表时间)