%0 Conference Paper %B SACMAT’11 %D 2011 %T xDAuth: A Scalable and Lightweight Framework for Cross Domain Access Control and Delegation %A Masoom Alam %A Xinwen Zhang %A Kamran H Khan %A Gohar Ali %X Cross domain resource sharing and collaborations have be- come pervasive in today's service oriented organizations. Existing approaches for the realization of cross domain ac- cess control are either focused on the model level only with- out concrete implementation mechanisms, or not general enough to provide a exible framework for enterprise web applications. In this paper, we present xDAuth, a frame- work for the realization of cross domain access control and delegation with RESTful web service architecture. While focusing on real issues under the context of cross domain access scenarios such as no prede ned trust relationship be- tween a service provider domain and service requestor do- main, xDAuth leverages existing web technologies to real- ize desired security requirements while supporting exible and scalable security policies and privacy protection with low performance overhead. We have implemented xDAuth in a medical module in OpenERP, an open source ERP sys- tem. Our evaluation demonstrates that xDAuth is a feasible framework towards general cross domain access control for service oriented architectures. %B SACMAT’11 %I ACM %C Innsbruck, Austria %U http://profsandhu.com/zhang/pub/sacmat11-xdauth.pdf