Title :
A Modular Access Control Service for Supporting Application-Specific Policies
Author :
Verhanneman, Tine ; Piessens, Frank ; De Win, Bart ; Truyen, Eddy ; Joosen, Wouter
Author_Institution :
Dept. of Comput. Sci., Katholieke Univ., Leuven, Heverlee
fDate :
6/1/2006 12:00:00 AM
Abstract :
Aspect-oriented software development techniques can help modularize the enforcement of application-specific access control policies. Middleware platforms must cater to a variety of applications. The access control services integrated in these platforms support only access control policies with limited expressiveness and typically enforce only an invocation access policy. Enforcing such a policy only takes into account information in the method invocation and fails to include application state or context in the access decision process
Keywords :
authorisation; decision making; middleware; object-oriented programming; access decision process; aspect-oriented software development techniques; method invocation; middleware platform; modular access control service; policy enforcement; Access control; Application software; Authorization; Books; Calendars; Context-aware services; Engines; Java; Logic; Programming; access control; aspect-oriented programming; design tools; security;
Journal_Title :
Distributed Systems Online, IEEE
DOI :
10.1109/MDSO.2006.37
