Research Article
Towards a Secure and Borderless Collaboration between Organizations: An Automated Enforcement Mechanism
Algorithm 2
Mapping from Generic-XACML to XACML-RBAC profile.
Input: Generic-XACML document | Output: XACML-RBAC document | Create a root PolicySet in XACML-RBAC document with an empty Target | For i=1 to rulesnumber do | Parse Target of rule i in Generic-XACML document; | If Target designate the Subject then | currentValue:=value(Subject); | Append a role PolicySet with Target designating CurrentValue for the Subject; | Insert a Permissions PolicySet with an empty Target; | Insert a policy with an empty Target; | RoleRules:= rule i; | For j=i+1 to rulesnumber do | Parse Target of rule j; | If value(Subject)= currentValue then | RoleRules:= rule j; | Alter RoleRules Targets; //delete constraint about currentValue; | Insert RoleRules into the policy; | Return XACML-RBAC document; |
|