Modality conflict analysis in XACML policy evaluation
Modality conflict is one of the main issues in policy evaluation. Modality conflict arises when two or more policies that refer to the same subject, action, and resource but with modalities of opposite sign. Authorizations could be propagated according to the inheritance relationships between concep...
| Main Authors: | , , , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Published: |
School of Computing, UUM College of Arts and Sciences
2017
|
| Online Access: | http://psasir.upm.edu.my/id/eprint/64451/ http://psasir.upm.edu.my/id/eprint/64451/1/PID46-708-713e.pdf |
| _version_ | 1848855005765828608 |
|---|---|
| author | Teo, Poh Kuang Ibrahim, Hamidah Sidi, Fatimah Udzir, Nur Izura |
| author_facet | Teo, Poh Kuang Ibrahim, Hamidah Sidi, Fatimah Udzir, Nur Izura |
| author_sort | Teo, Poh Kuang |
| building | UPM Institutional Repository |
| collection | Online Access |
| description | Modality conflict is one of the main issues in policy evaluation. Modality conflict arises when two or more policies that refer to the same subject, action, and resource but with modalities of opposite sign. Authorizations could be propagated according to the inheritance relationships between concepts not only based on subject, resource, and action, but also condition. Identifying the applicable policies and detecting the modality conflict when temporal and spatial constraints are specified in the policies have not received enough attention. Hence, in this paper an authorization propagation rule is proposed to identify the applicable policies during policy evaluation, which relies on inheritance relationships between concepts, on the basis of the partially ordered structures obtained by classifying subject, resource, action, and condition attributes. An effective authorization propagation rule can detect most of the modality conflicts that occur among the applicable policies. |
| first_indexed | 2025-11-15T11:18:53Z |
| format | Conference or Workshop Item |
| id | upm-64451 |
| institution | Universiti Putra Malaysia |
| institution_category | Local University |
| language | English |
| last_indexed | 2025-11-15T11:18:53Z |
| publishDate | 2017 |
| publisher | School of Computing, UUM College of Arts and Sciences |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | upm-644512018-07-05T09:35:21Z http://psasir.upm.edu.my/id/eprint/64451/ Modality conflict analysis in XACML policy evaluation Teo, Poh Kuang Ibrahim, Hamidah Sidi, Fatimah Udzir, Nur Izura Modality conflict is one of the main issues in policy evaluation. Modality conflict arises when two or more policies that refer to the same subject, action, and resource but with modalities of opposite sign. Authorizations could be propagated according to the inheritance relationships between concepts not only based on subject, resource, and action, but also condition. Identifying the applicable policies and detecting the modality conflict when temporal and spatial constraints are specified in the policies have not received enough attention. Hence, in this paper an authorization propagation rule is proposed to identify the applicable policies during policy evaluation, which relies on inheritance relationships between concepts, on the basis of the partially ordered structures obtained by classifying subject, resource, action, and condition attributes. An effective authorization propagation rule can detect most of the modality conflicts that occur among the applicable policies. School of Computing, UUM College of Arts and Sciences 2017 Conference or Workshop Item PeerReviewed text en http://psasir.upm.edu.my/id/eprint/64451/1/PID46-708-713e.pdf Teo, Poh Kuang and Ibrahim, Hamidah and Sidi, Fatimah and Udzir, Nur Izura (2017) Modality conflict analysis in XACML policy evaluation. In: 6th International Conference on Computing and Informatics (ICOCI 2017), 25-27 Apr. 2017, Kuala Lumpur, Malaysia. (pp. 708-713). |
| spellingShingle | Teo, Poh Kuang Ibrahim, Hamidah Sidi, Fatimah Udzir, Nur Izura Modality conflict analysis in XACML policy evaluation |
| title | Modality conflict analysis in XACML policy evaluation |
| title_full | Modality conflict analysis in XACML policy evaluation |
| title_fullStr | Modality conflict analysis in XACML policy evaluation |
| title_full_unstemmed | Modality conflict analysis in XACML policy evaluation |
| title_short | Modality conflict analysis in XACML policy evaluation |
| title_sort | modality conflict analysis in xacml policy evaluation |
| url | http://psasir.upm.edu.my/id/eprint/64451/ http://psasir.upm.edu.my/id/eprint/64451/1/PID46-708-713e.pdf |