I am currently doing some research on new features of XACML 3.0 called Administrative Delegation Profile and Obligation with Attribute-Based Access Control (ABAC). Can anyone help me with some good read and resources to do further research on this domain and also if I am planning to implement those concept in my web application using Java then what can be the Pros and Cons ahead and how can I incorporate those proof of concepts?
Currently, I am using Balana as the backend Security Framework to parse my request / response which apparently seems not going to support Delegation so what can be the best framework to use. or if I want to do it myself what I can do and what changes I need to make in current implementation.
