Securing programs via modeling and efficient enforcement of access control policies

被引:0
作者
Parsa, Saeed [1 ]
Damanafshan, Morteza [1 ]
机构
[1] Iran Univ Sci & Technol, Dept Comp Engn, Tehran, Iran
来源
9TH INTERNATIONAL CONFERENCE ON ADVANCED COMMUNICATION TECHNOLOGY: TOWARD NETWORK INNOVATION BEYOND EVOLUTION, VOLS 1-3 | 2007年
关键词
security; access control; policy modeling; enforcement mechanism;
D O I
10.1109/ICACT.2007.358790
中图分类号
TN [电子技术、通信技术];
学科分类号
0809 ;
摘要
Applying access control is a well-known approach for securing programs. Access control policies can be modeled and then enforced into existing program code. A major difficulty is to translate policy models into compatible format with the program code to be secured. In this paper, a new approach for automatic translation and enforcement of View-Based Access Control policies into Java program text is presented.
引用
收藏
页码:2118 / +
页数:2
相关论文
共 21 条
[1]  
BASIN D, 2003, MODEL DRIVEN SECURIT
[2]  
Brose G., 1999, LNCS, V1603
[3]  
BROSE G, 2001, THESIS FREIE U BERLI
[4]  
Brose G., 2001, INTEGRATING SECURITY
[5]  
Damianou Nicodemos, 2001, P INT WORKSH POL DIS
[6]  
ERLINGSSON U, 2004, THESIS CORNELL U
[7]  
Erlingsson Ulfar, 1999, P NEW SEC PAR WORKSH
[8]  
JURJENS J, 2002, LNCS
[9]  
JURJENS J, 2002, ACM S APPL COMP MADR
[10]  
Jurjens J, 2001, AVOCS 01
123