Extending Java for package based access control

New Orleans, Louisiana December 11-December 15

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898859

16th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by M. Papa Articles by O. Bremer Articles by R. Chandia Articles by J. Hale Articles by S. Shenoi

	ASCII Text	x
	M. Papa, O. Bremer, R. Chandia, J. Hale, S. Shenoi, "Extending Java for package based access control," Computer Security Applications Conference, Annual, pp. 67, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898859, author = {M. Papa and O. Bremer and R. Chandia and J. Hale and S. Shenoi}, title = {Extending Java for package based access control}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {67}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898859}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Extending Java for package based access control SN - 1063-9527 SP EP A1 - M. Papa, A1 - O. Bremer, A1 - R. Chandia, A1 - J. Hale, A1 - S. Shenoi, PY - 2000 KW - authorisation; Java; object-oriented programming; program interpreters; software libraries; package based access control; Java language; programmable security; syntax; DAC; MAC; RBAC; TBAC; primitive ticket; language translation preprocessor; security service library; ticket management; source code; bytecode interpretation VL - 0 JA - Computer Security Applications Conference, Annual ER -

M. Papa, Center for Inf. Security, Tulsa Univ., OK, USA

O. Bremer, Center for Inf. Security, Tulsa Univ., OK, USA

R. Chandia, Center for Inf. Security, Tulsa Univ., OK, USA

J. Hale, Center for Inf. Security, Tulsa Univ., OK, USA

S. Shenoi, Center for Inf. Security, Tulsa Univ., OK, USA

This paper describes an extension of the Java language that provides programmable security. The approach augments the Java syntax with constructs for specifying various access control policies for Java packages, including DAC, MAC, RBAC and TBAC. A primitive ticket based mechanism serves as the foundation for programmable security. The implementation incorporates a preprocessor for language translation and a security service library that implements the ticket management infrastructure. The preprocessor translates the extended Java source code to native Java for eventual bytecode interpretation simultaneously binding security services to the native code. The design is simple and flexible and provides developers with an effective tool for programming security within Java packages.

Index Terms:

authorisation; Java; object-oriented programming; program interpreters; software libraries; package based access control; Java language; programmable security; syntax; DAC; MAC; RBAC; TBAC; primitive ticket; language translation preprocessor; security service library; ticket management; source code; bytecode interpretation

Citation:

M. Papa, O. Bremer, R. Chandia, J. Hale, S. Shenoi, "Extending Java for package based access control," acsac, pp.67, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.