Security for extensible systems

Author

Grimm, Robert ; Bershad, Brian N.

Author_Institution

Dept. of Comput. Sci. & Eng., Washington Univ., Seattle, WA, USA

fYear

1997

fDate

5-6 May 1997

Firstpage

62

Lastpage

66

Abstract

The recent trend towards dynamically extensible systems, such as Java, SPIN or VINO, promises more powerful and flexible systems. At the same time, the impact of extensibility on overall system security and, specifically, on access control is still ill understood, and protection mechanisms in these extensible systems are rudimentary at best. We identify the structure of extensible systems as it relates to system security and postulate an initial model for access control. This model extends the discretionary access control of traditional operating systems to encompass extensions and, by using ideas explored by the security community, introduces a notion of mandatory access control. While a new access control model does not address all aspects of system security, we believe that it can serve as a solid foundation for developing a fully featured and flexible security model for extensible systems

Keywords

authorisation; message authentication; network operating systems; Java; SPIN; VINO; discretionary access control; dynamically extensible systems; extensible systems security; flexible security model; flexible systems; mandatory access control; protection mechanisms; security community; system security; Access control; Computer science; File systems; Java; Operating systems; Power engineering and energy; Power system modeling; Power system protection; Power system security; Solid modeling;

fLanguage

English

Publisher

ieee

Conference_Titel

Operating Systems, 1997., The Sixth Workshop on Hot Topics in

Conference_Location

Cape Cod, MA

Print_ISBN

0-8186-7834-8

Type

conf

DOI

10.1109/HOTOS.1997.595184

Filename

595184