International Journal of Computer Integrated Manufacturing
Hi-index | 0.00 |
Directory service markup language (DSML) prescribes how to manipulate directory servicesinformation in XML, and thus it facilitates sharing of directory information as XML fragments among XML-based applications. In this paper, we describe how to leverage DSML for role-based access control on XML-based web applications which often need collaboration within or beyond a single enterprise boundary. Compared with previous works in this area, we show that our approach can solve the problems of a previous LDAP-oriented solution. We discuss the security architecture based upon server-pull model and its components. We also demonstrate the feasibility of our approach through a proof-of-concept implementation. Finally, several issues from our experience are discussed as well.