Enforcing RFID data visibility restrictions using XACML security policies
Radio Frequency Identification (RFID) technology allows automatic data capture from tagged objects moving in a supply chain. This data can be very useful if it is used to answer traceability queries, however it is distributed across many different repositories, owned by different companies. Discover...
| Main Authors: | , , , |
|---|---|
| Other Authors: | |
| Format: | Article |
| Language: | en_US |
| Published: |
Institute of Electrical and Electronics Engineers (IEEE)
2013
|
| Online Access: | http://hdl.handle.net/1721.1/79678 https://orcid.org/0000-0003-2812-039X |
| _version_ | 1826197233408671744 |
|---|---|
| author | Pardal, Miguel L. Harrison, Mark Marques, Jose Alves Sarma, Sanjay Emani |
| author2 | delete |
| author_facet | delete Pardal, Miguel L. Harrison, Mark Marques, Jose Alves Sarma, Sanjay Emani |
| author_sort | Pardal, Miguel L. |
| collection | MIT |
| description | Radio Frequency Identification (RFID) technology allows automatic data capture from tagged objects moving in a supply chain. This data can be very useful if it is used to answer traceability queries, however it is distributed across many different repositories, owned by different companies. Discovery Services (DS) are designed to assist in retrieving the RFID data relevant for traceability queries while enforcing sharing policies that are defined and required by participating companies to prevent sensitive data from being exposed. In this paper we define an interface for Supply Chain Authorization (SC-Az) and describe the implementation of two visibility restriction mechanisms based on Access Control Lists (ACLs) and Capabilities. Both approaches were converted to the standard eXtensible Access Control Markup Language (XACML) and their correctness and performance was evaluated for supply chains with increasing size. |
| first_indexed | 2024-09-23T10:44:33Z |
| format | Article |
| id | mit-1721.1/79678 |
| institution | Massachusetts Institute of Technology |
| language | en_US |
| last_indexed | 2024-09-23T10:44:33Z |
| publishDate | 2013 |
| publisher | Institute of Electrical and Electronics Engineers (IEEE) |
| record_format | dspace |
| spelling | mit-1721.1/796782022-09-27T14:40:20Z Enforcing RFID data visibility restrictions using XACML security policies Pardal, Miguel L. Harrison, Mark Marques, Jose Alves Sarma, Sanjay Emani delete Massachusetts Institute of Technology. Auto-ID Laboratory Sarma, Sanjay Emani Radio Frequency Identification (RFID) technology allows automatic data capture from tagged objects moving in a supply chain. This data can be very useful if it is used to answer traceability queries, however it is distributed across many different repositories, owned by different companies. Discovery Services (DS) are designed to assist in retrieving the RFID data relevant for traceability queries while enforcing sharing policies that are defined and required by participating companies to prevent sensitive data from being exposed. In this paper we define an interface for Supply Chain Authorization (SC-Az) and describe the implementation of two visibility restriction mechanisms based on Access Control Lists (ACLs) and Capabilities. Both approaches were converted to the standard eXtensible Access Control Markup Language (XACML) and their correctness and performance was evaluated for supply chains with increasing size. 2013-07-23T14:57:56Z 2013-07-23T14:57:56Z 2012-11 Article http://purl.org/eprint/type/ConferencePaper 978-1-4673-4659-7 978-1-4673-4656-6 978-1-4673-4658-0 http://hdl.handle.net/1721.1/79678 Pardal, Miguel L., Mark Harrison, Sanjay Sarma, and Jose Alves Marques. Enforcing RFID Data Visibility Restrictions Using XACML Security Policies. In 2012 IEEE International Conference on RFID-Technologies and Applications (RFID-TA), 413-418. Institute of Electrical and Electronics Engineers, 2012. doi:10.1109/RFID-TA.2012.6404558. https://orcid.org/0000-0003-2812-039X en_US http://dx.doi.org/10.1109/RFID-TA.2012.6404558 Proceedings of the 2012 IEEE International Conference on RFID-Technologies and Applications (RFID-TA) Creative Commons Attribution-Noncommercial-Share Alike 3.0 http://creativecommons.org/licenses/by-nc-sa/3.0/ application/pdf Institute of Electrical and Electronics Engineers (IEEE) Other University Web Domain |
| spellingShingle | Pardal, Miguel L. Harrison, Mark Marques, Jose Alves Sarma, Sanjay Emani Enforcing RFID data visibility restrictions using XACML security policies |
| title | Enforcing RFID data visibility restrictions using XACML security policies |
| title_full | Enforcing RFID data visibility restrictions using XACML security policies |
| title_fullStr | Enforcing RFID data visibility restrictions using XACML security policies |
| title_full_unstemmed | Enforcing RFID data visibility restrictions using XACML security policies |
| title_short | Enforcing RFID data visibility restrictions using XACML security policies |
| title_sort | enforcing rfid data visibility restrictions using xacml security policies |
| url | http://hdl.handle.net/1721.1/79678 https://orcid.org/0000-0003-2812-039X |
| work_keys_str_mv | AT pardalmiguell enforcingrfiddatavisibilityrestrictionsusingxacmlsecuritypolicies AT harrisonmark enforcingrfiddatavisibilityrestrictionsusingxacmlsecuritypolicies AT marquesjosealves enforcingrfiddatavisibilityrestrictionsusingxacmlsecuritypolicies AT sarmasanjayemani enforcingrfiddatavisibilityrestrictionsusingxacmlsecuritypolicies |