The need for declarative security mechanisms

Conference Proceedings of the EUROMICRO

Volumn 30, Issue , 2004, Pages 526-531

  Probst, Stefan ^a   Küng, Josef ^b  

^a SOFTWARE COMPETENCE CENTER HAGENBERG   (Austria)

^b FAW Institute for Application Oriented Knowledge Processing   (Austria)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER PROGRAMMING; INFORMATION ANALYSIS; INTEGRATION; PROBLEM SOLVING; SET THEORY; SOFTWARE ENGINEERING; REUSABILITY;

DEVELOPMENT CYCLE; DISCRETIONARY ACCESS CONTROL (DAC); ROLE-BASED ACCESS CONTROLS (RBAC); SECURITY LOGICS; APPLICATION DEVELOPMENT; APPLICATION LOGIC; AUDITING MECHANISM; INTEGRATION OF SECURITY; PROGRAMMING ENVIRONMENT; SECURITY MECHANISM; SECURITY REQUIREMENTS; SOFTWARE APPLICATIONS;

SECURITY OF DATA; APPLICATION PROGRAMS;

EID: 11844260063     PISSN: 10896503     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/eurmic.2004.1333417     Document Type: Conference Paper

References (12)

1. B. Marquet, C. Gustave, A. Lefebvre, S. Nemchenko, S. Chassande-Barrioz: "Secured services in a multi-tier architecture", World Telecommunications Congress, Paris, 2002.
2. R. Sandhu, D. Ferraiolo, and R. Kuhn: "The NIST Model for Role-Based Access Control: Towards A Unified Standard", Proc. 5th ACM Workshop on Role-Based Access Control, July 2000.
3. O. Nierstrasz, S. Gibbs, and D. Tsichritzis: "Component-Oriented Software Development", Communications of the ACM, Vol. 35, No. 9, pp. 160-165, Sep. 1992.
4. C. Szyperski: Component Software - Beyond Object-Oriented Programming, ISBN 0-201-74572-0, Addison-Wesley, 2002.
5. Sun Microsystems: "Java Security Architecture", http://java.sun.com/j2se/1.4/docs/guide/security/spec/security-specTOC.fm.html (last accessed on Feb. 24, 2004).
6. E. Jendrock, S. Bodoff, D. Green, K. Haase, M. Pawlan, and B. Steams: The J2EE Tutorial, ISBN 0-201-79168-4, Addison Wesley, 2002.
7. Foundstone Inc., CORE Security Technologies: "Security in the Microsoft® .NET Framework", http://www.foundsone.com/pdf/dotnet- security-framework.pdf (last accessed on Feb. 24, 2004).
8. J. Linn: Generic Security Service Application Program Interface, Version 2. Request for Comments 2078, Internet Engineering Task Force, Jan. 1997.
9. R. Sandhu and P. Samarati: Authentication, Access Control, and Audit. ACM Computing Surveys, Vol. 28, No. 1, March 1996.
10. D. Gollmann: Computer Security, ISBN 0-471-97844-2, John Wiley & Sons Ltd, 1999.
11. E. Gamma, R. Helm, R. Johnson, and J. Vlissides, Design Patterns, ISBN 0-201-63361-2, Addison-Wesley, 1995.
12. Oasis: Technical Overview of the OASIS Security Assertion Markup Language (SAML) V.1., Draft 04, 30. March 2004.