| |
| Acadêmico(a): Jailson Volnei dos Santos |
| Título: Middleware para Autorização Distribuída utilizando XACML |
| |
| Abstract: |
This paper presents the development of a distributed middleware to manage authorization and access control through control policies. The middleware is responsible for registering, changing, and deleting access control policies from a specified directory. From the registry policy can make requests request access to resources and receive answers about yourself permission to access a particular subject to a particular feature is authorized. Web service interface was used to provide communication heterogeneity, decoupling and flexibility needed for distributed applications, interoperability and access to middleware. For specifying access control policies and also a format for request and response messages used was the standard XACML (eXtensible Access Control Markup Language), used to define who has access rights subject on which resource. The format used to specify request and response describes how queries / requests under the policies should be carried out (application) and how the answers should be. From problems encountered in the sharing and distribution of resources in distributed systems linked to the need for information security and authorization and scope of the XACML standard, the results obtained in the implementation of middleware met the proposed objectives. As a result, the development of middleware abstraction allowed the syntax and operation of XACML, management of authorization and access control via security policies that demonstrate that it is possible to develop a software layer intermediate to troubleshoot commented yet.
|
| |
|
