Containing multiple domains and a large number of heterogeneous distributed devices, large-scale device collaboration systems require a fine-grained, flexible and secure mechanism for device access control. This chapter presents and evaluates a distributed device access control architecture Multiple Policies supported Attribute-Based Access Control (MPABAC) to support device authentication and authorization among multiple domains. Based on eXtensible Access Control Markup Language (XACML) standard and Attribute-Based Access Control (ABAC) model, this architecture supports cross-domain authentication and authorization, hierarchical policy combination and enforcement, unified device access control and fine-grained attributes-based privilege description. Experiments show that the performance of this implementation is acceptable within the production environment. © 2012 Springer Science+Business Media B.V.
CITATION STYLE
Liang, F., Guo, H., Yi, S., Zhang, X., & Ma, S. (2012). An attributes-based access control architecture within large-scale device collaboration systems using XACML. In Lecture Notes in Electrical Engineering (Vol. 113 LNEE, pp. 1051–1059). https://doi.org/10.1007/978-94-007-2169-2_124
Mendeley helps you to discover research relevant for your work.