You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 33 Next »

Wiki space for work on 2010 Advance CAMP Action Item:

Assess Various Policy Engines using MACE-Paccman Benchmark Use Cases

 

On XACML|

XACML stands for eXtensible Access Control Markup Language. It is a declarative access control policy language implemented in XML and a processing model, describing how to interpret the policies.
 

 

Overview

Deliverables/Goals

  1. List of Policy Engines to be evaluated
  2. Selection of benchmark use cases from MACE-Paccman to be run. Note that there are links to solution outlines via Grouper, PerMIT and Kuali RICE
    • Course Deadline Extended
    • Old and New Payroll Clerks
    • Dorm Access for Residential Advisers
    • Professional Organizations and Federations
    • Drug Restocking Approval
    • Delegated Directory Administration
       
  3. English language expression of policies implicit in each use case
    • Multiple representations may be needed
       
  4. Expression of English language policies in XACML
     
  5. Develop set of test cases, evaluate each test case with each policy engine
     
  6. Report on policy language and policy engine evaluations including lessons learned, suggested next steps

Group Members

Leif Johannson, Tom Dopirak, Keith Hazelton...

Mailing List: <polengine@internet2.edu>
To subscribe, send mail to <pubsympa@internet2.edu> with the SUBJECT: 

sub polengine FirstName LastName

Status

  • "polEngine" list created
  • Deliverables 1 and 2 completed
  • Adoption of Policy Engine work as a MACE-PACCman WG work item

Working Area

-

-

-

-

  • No labels