Taming access control security: extending capabilities using the views relationship

The ‘views’ relationship indicates how an object‐oriented design can be clearly separated into objects and their corresponding interface. This paper uses the concept of ‘views’ in order to achieve full separation between the application and the security policy in the design and implementation. The r...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:Software, practice & experience Ročník 32; číslo 4; s. 341 - 358
Hlavní autoři: Markiewicz, Marcus E., Lucena, Carlos J. P., Cowan, Donald D.
Médium: Journal Article
Jazyk:angličtina
Vydáno: Chichester, UK John Wiley & Sons, Ltd 10.04.2002
Témata:
abstract design objects
abstract design views
capability
e-commerce
end-user programming
reuse
security
subject-oriented programming
views
ISSN:0038-0644, 1097-024X
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:The ‘views’ relationship indicates how an object‐oriented design can be clearly separated into objects and their corresponding interface. This paper uses the concept of ‘views’ in order to achieve full separation between the application and the security policy in the design and implementation. The result is achieved by providing a model for capabilities using ‘views’ that is richer than the traditional capability model. In addition, a distributed access control model is shown to be effective through the use of Secure Object Communication Channels (SOCCs) to allow for secure connections at the object level. This security is applicable in the e‐commerce application domain, bringing security directly to the application ion level. Copyright © 2002 John Wiley & Sons, Ltd.
Bibliografie:istex:E16F3EE8D19DB27E74096C7F66A0F785A9CC53C4
ark:/67375/WNG-867ZTG2R-Q
ArticleID:SPE440
ObjectType-Article-2
SourceType-Scholarly Journals-1
ObjectType-Feature-1
content type line 23
ISSN:0038-0644
1097-024X
DOI:10.1002/spe.440