Title :
Authorization model based on object-oriented concept
Author :
Izaki, Keiji ; Tanaka, Katsuya ; Takizawa, Makoto
Author_Institution :
Dept. of Comput. & Syst. Eng., Tokyo Denki Univ., Japan
Abstract :
In object-oriented systems, classes and objects are hierarchically structured in instance-of, is-a, and part-of relations. Data and methods of a class are inherited by lower-level classes according to the is-a hierarchical structure. Access rules on classes are specified to make sure that only authorized subjects manipulate objects in authorized ways. It is difficult to specify access rules for every class and object, because the system is composed of various types of classes, and objects which are dynamically created and dropped. If access rules on some class could be reused for other classes, the access rules are easily specified. This paper discusses how to inherit access rules in the hierarchical structure of classes and objects
Keywords :
authorisation; database management systems; object-oriented methods; access rules; authorization model; authorized subjects; hierarchically structure; instance-of relation; is-a relation; lower-level classes; object manipulation; object-oriented concept; object-oriented systems; part-of relation; Access control; Authorization; Data security; Encapsulation; Information filtering; Information security; Object oriented modeling; Permission; Relational databases; Systems engineering and theory;
Conference_Titel :
Information Networking, 2001. Proceedings. 15th International Conference on
Conference_Location :
Beppu City, Oita
Print_ISBN :
0-7695-0951-7
DOI :
10.1109/ICOIN.2001.905332
