Reusable Components for Developing Security-Aware Applications

San Diego California December 09-December 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176295

18th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Stefan Probst Articles by Wolfgang Essmayr Articles by Edgar Weippl

	ASCII Text	x
	Stefan Probst, Wolfgang Essmayr, Edgar Weippl, "Reusable Components for Developing Security-Aware Applications," Computer Security Applications Conference, Annual, pp. 239, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002.

	BibTex	x
	@article{ 10.1109/CSAC.2002.1176295, author = {Stefan Probst and Wolfgang Essmayr and Edgar Weippl}, title = {Reusable Components for Developing Security-Aware Applications}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2002}, issn = {1063-9527}, pages = {239}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.2002.1176295}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Reusable Components for Developing Security-Aware Applications SN - 1063-9527 SP EP A1 - Stefan Probst, A1 - Wolfgang Essmayr, A1 - Edgar Weippl, PY - 2002 KW - null VL - 0 JA - Computer Security Applications Conference, Annual ER -

Stefan Probst, Software Competence Center Hagenberg

Wolfgang Essmayr, Software Competence Center Hagenberg

Edgar Weippl, Software Competence Center Hagenberg

Today, security is considered to be an important aspect of multi-tier application development. Thoroughly researched concepts for access control exist and have been proven in mainframe computing. However, they are often not used in today?s development of multi-tier applications. One reason may be the lack of appropriate reusable components that support application developers that frequently have to re-invent the wheel when it comes to access controls. The goal of this paper is to promote awareness of security issues when developing applications and to illustrate a suitable approach for that. Our framework called GAMMA (Generic Authorization Mechanisms for Multi-Tier Applications) offers several authentication, access control, and auditing mechanisms. Access control models can be combined or used simultaneously in order to provide application-specific and highly customizable mechanisms. Moreover, due to its component-based structure, new security models and additional approaches for authentication or auditing can easily be added.

Citation:

Stefan Probst, Wolfgang Essmayr, Edgar Weippl, "Reusable Components for Developing Security-Aware Applications," acsac, pp.239, 18th Annual Computer Security Applications Conference (ACSAC '02), 2002

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.