|
Published Articles >> Table of Contents >> Abstract
16th Annual Computer Security Applications Conference (ACSAC'00)
p. 67
Extending Java for package based access control
M. Papa, Center for Inf. Security, Tulsa Univ., OK, USA
O. Bremer, Center for Inf. Security, Tulsa Univ., OK, USA
R. Chandia, Center for Inf. Security, Tulsa Univ., OK, USA
J. Hale, Center for Inf. Security, Tulsa Univ., OK, USA
S. Shenoi, Center for Inf. Security, Tulsa Univ., OK, USA
Full Article Text:
  
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898859
Send link to a friend
| Abstract |
|
This paper describes an extension of the Java language that provides programmable security. The approach augments the Java syntax with constructs for specifying various access control policies for Java packages, including DAC, MAC, RBAC and TBAC. A primitive ticket based mechanism serves as the foundation for programmable security. The implementation incorporates a preprocessor for language translation and a security service library that implements the ticket management infrastructure. The preprocessor translates the extended Java source code to native Java for eventual bytecode interpretation simultaneously binding security services to the native code. The design is simple and flexible and provides developers with an effective tool for programming security within Java packages.
|
 Additional Information
|
Index Terms- authorisation; Java; object-oriented programming; program interpreters; software libraries; package based access control; Java language; programmable security; syntax; DAC; MAC; RBAC; TBAC; primitive ticket; language translation preprocessor; security service library; ticket management; source code; bytecode interpretation
Citation:
M. Papa, O. Bremer, R. Chandia, J. Hale, S. Shenoi,
"Extending Java for package based access control,"
acsac,
p. 67,
16th Annual Computer Security Applications Conference (ACSAC'00),
2000
|
|
