A framework for the extended evaluation of ABAC policies

Abstract A main challenge of attribute-based access control (ABAC) is the handling of missing information. Several studies have shown that the way standard ABAC mechanisms, e.g. based on XACML, handle missing information is flawed, making ABAC policies vulnerable to attribute-hiding attacks. Recent...

Full description

Bibliographic Details
Main Authors:	Charles Morisset, Tim A. C. Willemse, Nicola Zannone
Format:	Article
Language:	English
Published:	SpringerOpen 2019-02-01
Series:	Cybersecurity
Subjects:	Attribute-based access control Policy evaluation Missing attributes Attribute power Attribute-hiding attacks
Online Access:	http://link.springer.com/article/10.1186/s42400-019-0024-0

Internet

http://link.springer.com/article/10.1186/s42400-019-0024-0

A framework for the extended evaluation of ABAC policies

Internet

Similar Items