Servicio de Información Comunitario sobre Investigación y Desarrollo - CORDIS

FP5

EURO6IX Informe resumido

Project ID: IST-2001-32161
Financiado con arreglo a: FP5-IST
País: Spain

NAS-SAML

NAS-SAML is an access control infrastructure developed over the DIAMETER protocol, which makes use of SAML statements to represent the user authorization data and XACML policies to represent access control sentences.

The main features of this architecture are:

-·NAS-SAML provides two different access methods. Authorization can be performed in a transparent way, from the user's point of view, using the pull model. The push model slightly overloads the system in relation to the previous model, but it provides more options to the users, who can select a set of desired attributes to present to the system.

- This infrastructure provides a flexible, scalable and manageable high-level authorization system.
-·Organizations assign attributes to users to define its specific access profile.
-·Organizations define the set of attributes needed by an user to perform a specific action, such as network access.
-·This infrastructure can be easily extended to provide authorization decisions in other high level applications, such as the grid.

Reported by

UNIVERSIDAD DE MURCIA
AVENIDA TENIENTE FLOMESTA S/N - EDIFICIO CONVALECENCIA
30003 MURCIA
Spain
Síganos en: RSS Facebook Twitter YouTube Gestionado por la Oficina de Publicaciones de la UE Arriba