XACML policy performance evaluation using a flexible load testing framework

Bernard Butler, Brendan Jennings, Dmitri Botvich

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

10 Citations (Scopus)

Abstract

The performance and scalability of access control systems is growing more important as organisations deploy ever more complex communications and content management systems. Fine-grained access control is becoming more pervasive, so decisions are more frequent and policy sets are larger. We outline a flexible performance testing framework that accepts XACML PDP implementations (in the server component) and submits representative access control requests (from the client component) in a representative temporal ordering. The framework includes instrumentation and analysis modules to support performance experiments. We describe an initial realization of the framework and report on initial experiments comparing the performance of the SunXACML and Enterprise XACML PDPs.

Original languageEnglish
Title of host publicationCCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security
Pages648-650
Number of pages3
DOIs
Publication statusPublished - 2010
Externally publishedYes
Event17th ACM Conference on Computer and Communications Security, CCS'10 - Chicago, IL, United States
Duration: 4 Oct 20108 Oct 2010

Publication series

NameProceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)1543-7221

Conference

Conference17th ACM Conference on Computer and Communications Security, CCS'10
Country/TerritoryUnited States
CityChicago, IL
Period4/10/108/10/10

Keywords

  • Access control policies
  • Measurement testbed
  • Performance evaluation

Fingerprint

Dive into the research topics of 'XACML policy performance evaluation using a flexible load testing framework'. Together they form a unique fingerprint.

Cite this