Testing of Contextual Role-Based Access Control Model (C-RBAC)

In order to evaluate the feasibility of the proposed C-RBAC model, the work in this paper presents the prototype implementation of C-RBAC model. The authors use eXtensible Access Control Markup Language (XACML) as a data repository and to represent the extended RBAC entities including purpose and spatial model. The OASIS eXtensible Access Control Markup Language (XACML) is a powerful and flexible language for expressing access control policies used to describe both, policy and access control decision request / response. XACML is a declarative access control policy language implemented in XML and a processing model, describing how to interpret the policies.