Abstract: In order to improve the security of SOA-based system, it is essential to take advantage of access control in SOA. However, the traditional access control models are unable to be used in heterogeneous SOA environment To coordinate access control with heterogeneous environment,an Attributcbased access control(ABAC) model was proposed,which, takes the entities attributes as the basic units of evaluation. According to pre-defined strategy, the model can provide a dynamic access control by evaluating the attributes of subject,resource and environment The model was implemented by XACML and SAMI.Analysis shows that the access control model based on XACML and SAML standard provides more flexibility and portability, therefore it can be dedicated to the distributed environment using SOA.

Key words: SOA, Attribute-based, Access control, SAML, XACML