Abstract
One of the goals of Digital Rights Management Systems is the provision of a flexible access rights management system to specify and enforce digital rights. Policy-based access control is an important feature of flexible access management systems as it facilitates changes in access control with minimum or no changes to the system it protects. Two prominent policy based access specification models (and languages) are the Policy Core Information Model (PCIM) and the eXtensible Access Control Markup Language (XACML). In this paper we analyze and compare the two specification models for their suitability in building access rights for Digital Rights Management Systems.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Anderson: Key differences between XACML and EPAL. In: Workshop on New Challenges for Access Control, Ottawa, April 27 (2005)
Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M.: Access Management in Federated Digital Libraries. In: Proceedings of IADIS, Madrid, October 6-9 (2004)
Cantor, S. (ed.): Shibboleth Architecture – Protocols and Profiles, Working Draft 05 (November 23, 2004), http://shibboleth.internet2.edu/docs/draft-mace-shibboleth-arch-protocols-05.pdf
Common Information Model, Version 2.8 (January 25, 2004), http://www.dmtf.org/standards/cim/cim_schema_v281/CIM_Policy28-Final.pdf
Distributed Management Task Force, http://www.dmtf.org/home
eXtensible Markup Language Working Group, www.oasis-open.org/committees/xacml
Godik, S., Moses, T. (eds.): OASIS eXtensible Access Control Management Language (XACML). Committee Specification 1.0 (April 21, 2002), http://www.oasis-open.org/committees/xacml/repository/cs-xacml-core-01.pdf
Hada, S., Kudo, M.: XML Access Control Language: Provisional Authorization for XML Documents. (Tokyo Research Laboratory, IBM Research) (October 16, 2000)
Maly, K., Anan, H., Tang, J., Nelson, M., Zubair, M., Yang, Z.: Challenges in Building Federation Services over Harvested Metadata. In: Sembok, T.M.T., Zaman, H.B., Chen, H., Urs, S.R., Myaeng, S.-H. (eds.) ICADL 2003. LNCS, vol. 2911, pp. 602–614. Springer, Heidelberg (2003)
Martin, M., Agnew, G., Kuhlman, D.L., McNair, J.H., Rhodes, W.A., Tipton, R.: Federated Digital Rights Management: A Proposed DRM Solution for Research and Education. D-Lib Magazine 8(7/8) (July/August 2002) ISSN 1082-9873
Organization for Advancement of Structured Information Systems, http://www.oasis-open.org/home/index.php
OWL Web Ontology Language: Overview (Febuary 10, 2004), http://www.w3.org/TR/2004/REC-owl-features-20040210/#s5
Understand the autonomic manager concept (March 2005), http://www-128.ibm.com/developerworks/library/ac-amconcept/
Vinoski, S.: Web Services Interaction Models - Part 1: Current Practice. In: IEEE Internet Computing, May – June 2002, pp. 89–91 (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Bhoopalam, K., Maly, K., Mukkamala, R., Zubair, M., Agrawal, D., Kaminsky, D. (2006). A Comparative Study of Specification Models for Autonomic Access Control of Digital Rights. In: Safavi-Naini, R., Yung, M. (eds) Digital Rights Management. Technologies, Issues, Challenges and Systems. DRMTICS 2005. Lecture Notes in Computer Science, vol 3919. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11787952_8
Download citation
DOI: https://doi.org/10.1007/11787952_8
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-35998-2
Online ISBN: 978-3-540-35999-9
eBook Packages: Computer ScienceComputer Science (R0)