![Page 1: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/1.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Slide 1
Enforcing RFID Data Visibility Restrictions using XACML security policies
Miguel Pardal, Mark Harrison, Sanjay Sarma, José Alves Marques
Técnico Lisboa, University of Cambridge, Massachusetts Institute of Technology
![Page 2: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/2.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Traceability systems assessment framework
Slide 2
http://trakchain.net
![Page 3: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/3.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Each individual item takes a unique path...
Slide 3
![Page 4: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/4.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Traceability data security
Slide 4
![Page 5: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/5.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
SCAz – Supply Chain Authorization Language
• Classical authorization mechanisms - EAC – Enumerated Access Control
• Access control lists
- CCT – Chain of Communication Tokens
Slide 5
![Page 6: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/6.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Externalized security
•Authentication
- SAML
•Message level (cryptographic) protection
- TLS
•Authorization
- XACML
Slide 6
![Page 7: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/7.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
eXtensible Access Control Markup Language
Slide 7
![Page 8: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/8.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
XACML request processing
Slide 8
![Page 9: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/9.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Performance assessment tool
Slide 9
![Page 10: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/10.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
EAC processing time breakdown for request evaluation
Slide 10
![Page 11: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/11.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
EAC and CCT evaluation time with increasing item numbers
Slide 11
![Page 12: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/12.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Contributions
• Data sharing policies
• XACML translation
• Correctness check
• Performance assessment
• Future work - Pharma pedigree case study
- Combine approaches in expressive language
- “Automatic” authorization • minimize admin burden for traceability data sharing
Slide 12
![Page 13: Enforcing RFID Data Visibility Restrictions using XACML security policies](https://reader034.vdocument.in/reader034/viewer/2022042623/5482b2b6b47959050d8b488c/html5/thumbnails/13.jpg)
Miguel Pardal, Enforcing RFID Data Visibility using XACML security policies
Visit http://trakchain.net
Slide 13
Merci!