Authorization model based on object-oriented concept

Author

Izaki, Keiji ; Tanaka, Katsuya ; Takizawa, Makoto

Author_Institution

Dept. of Comput. & Syst. Eng., Tokyo Denki Univ., Japan

fYear

2001

fDate

2001

Firstpage

72

Lastpage

77

Abstract

In object-oriented systems, classes and objects are hierarchically structured in instance-of, is-a, and part-of relations. Data and methods of a class are inherited by lower-level classes according to the is-a hierarchical structure. Access rules on classes are specified to make sure that only authorized subjects manipulate objects in authorized ways. It is difficult to specify access rules for every class and object, because the system is composed of various types of classes, and objects which are dynamically created and dropped. If access rules on some class could be reused for other classes, the access rules are easily specified. This paper discusses how to inherit access rules in the hierarchical structure of classes and objects

Keywords

authorisation; database management systems; object-oriented methods; access rules; authorization model; authorized subjects; hierarchically structure; instance-of relation; is-a relation; lower-level classes; object manipulation; object-oriented concept; object-oriented systems; part-of relation; Access control; Authorization; Data security; Encapsulation; Information filtering; Information security; Object oriented modeling; Permission; Relational databases; Systems engineering and theory;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Networking, 2001. Proceedings. 15th International Conference on

Conference_Location

Beppu City, Oita

Print_ISBN

0-7695-0951-7

Type

conf

DOI

10.1109/ICOIN.2001.905332

Filename

905332