TY - GEN
T1 - XACML policy performance evaluation using a flexible load testing framework
AU - Butler, Bernard
AU - Jennings, Brendan
AU - Botvich, Dmitri
PY - 2010
Y1 - 2010
N2 - The performance and scalability of access control systems is growing more important as organisations deploy ever more complex communications and content management systems. Fine-grained access control is becoming more pervasive, so decisions are more frequent and policy sets are larger. We outline a flexible performance testing framework that accepts XACML PDP implementations (in the server component) and submits representative access control requests (from the client component) in a representative temporal ordering. The framework includes instrumentation and analysis modules to support performance experiments. We describe an initial realization of the framework and report on initial experiments comparing the performance of the SunXACML and Enterprise XACML PDPs.
AB - The performance and scalability of access control systems is growing more important as organisations deploy ever more complex communications and content management systems. Fine-grained access control is becoming more pervasive, so decisions are more frequent and policy sets are larger. We outline a flexible performance testing framework that accepts XACML PDP implementations (in the server component) and submits representative access control requests (from the client component) in a representative temporal ordering. The framework includes instrumentation and analysis modules to support performance experiments. We describe an initial realization of the framework and report on initial experiments comparing the performance of the SunXACML and Enterprise XACML PDPs.
KW - Access control policies
KW - Measurement testbed
KW - Performance evaluation
UR - http://www.scopus.com/inward/record.url?scp=78649997918&partnerID=8YFLogxK
U2 - 10.1145/1866307.1866385
DO - 10.1145/1866307.1866385
M3 - Conference contribution
AN - SCOPUS:78649997918
SN - 9781450302449
T3 - Proceedings of the ACM Conference on Computer and Communications Security
SP - 648
EP - 650
BT - CCS'10 - Proceedings of the 17th ACM Conference on Computer and Communications Security
T2 - 17th ACM Conference on Computer and Communications Security, CCS'10
Y2 - 4 October 2010 through 8 October 2010
ER -