Published: July 10, 2009
Author(s)
Ramaswamy Chandramouli, Stephen Quirolgico
Conference
Name: 13th World Multi-Conference on Systemics, Cybernetics and Informatics (WMSCI 2009)
Dates: 07/10/2009 - 07/13/2009
Location: Orlando, Florida, United States
Deployment of smart cards as identity tokens (Smart ID Cards) requires the support of an enterprise system called Identity Management System (IDMS) for collection, storage, processing and distribution of personal identity credentials. Secure configuration of IDMS for this application domain (IDMS-SCD) requires an access specification and validation framework that can enable expression and enforcement of a comprehensive set of policies. These policies span the privacy, integrity and confidentiality requirements of the credential data and the processes associated with it. In this paper, we describe an implementation of an access specification and policy specification framework for IDMS-SCD using XML Schema and XML and a validation framework for checking the access specification for conformance to policies using XSLT. We outline the drivers and the roadmap for development of the access specification and validation framework and its benefits in terms of extensibility and ease of implementation.
Deployment of smart cards as identity tokens (Smart ID Cards) requires the support of an enterprise system called Identity Management System (IDMS) for collection, storage, processing and distribution of personal identity credentials. Secure configuration of IDMS for this application domain...
See full abstract
Deployment of smart cards as identity tokens (Smart ID Cards) requires the support of an enterprise system called Identity Management System (IDMS) for collection, storage, processing and distribution of personal identity credentials. Secure configuration of IDMS for this application domain (IDMS-SCD) requires an access specification and validation framework that can enable expression and enforcement of a comprehensive set of policies. These policies span the privacy, integrity and confidentiality requirements of the credential data and the processes associated with it. In this paper, we describe an implementation of an access specification and policy specification framework for IDMS-SCD using XML Schema and XML and a validation framework for checking the access specification for conformance to policies using XSLT. We outline the drivers and the roadmap for development of the access specification and validation framework and its benefits in terms of extensibility and ease of implementation.
Hide full abstract
Keywords
access control; identity management; smart cards; XML; XSLT
Control Families
None selected