Servizio Comunitario di Informazione in materia di Ricerca e Sviluppo - CORDIS

FP5

EURO6IX Sintesi della relazione

Project ID: IST-2001-32161
Finanziato nell'ambito di: FP5-IST
Paese: Spain

NAS-SAML

NAS-SAML is an access control infrastructure developed over the DIAMETER protocol, which makes use of SAML statements to represent the user authorization data and XACML policies to represent access control sentences.

The main features of this architecture are:

-·NAS-SAML provides two different access methods. Authorization can be performed in a transparent way, from the user's point of view, using the pull model. The push model slightly overloads the system in relation to the previous model, but it provides more options to the users, who can select a set of desired attributes to present to the system.

- This infrastructure provides a flexible, scalable and manageable high-level authorization system.
-·Organizations assign attributes to users to define its specific access profile.
-·Organizations define the set of attributes needed by an user to perform a specific action, such as network access.
-·This infrastructure can be easily extended to provide authorization decisions in other high level applications, such as the grid.

Contatto

Antonio Fernando GOMEZ SKARMETA, (Head of Unit)
Tel.: +34-96-8364607
Fax: +34-96-8364151
E-mail