Declarative access control for webDSL: Combining language integration and separation of concerns

Proceedings - 8th International Conference on Web Engineering, ICWE 2008

Volumn , Issue , 2008, Pages 175-188

  Groenewegen, Danny ^a   Visser, Eelco ^a  

^a DELFT UNIVERSITY OF TECHNOLOGY   (Netherlands)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER PROGRAMMING LANGUAGES; GRAPHICAL USER INTERFACES; INFORMATION THEORY; ISOMERS; LINGUISTICS; QUERY LANGUAGES; SECURITY SYSTEMS; SEPARATION;

INTERNATIONAL CONFERENCES; SEPARATION OF CONCERNS; WEB ENGINEERING;

ACCESS CONTROL;

EID: 51749099604     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ICWE.2008.15     Document Type: Conference Paper

References (26)

1. B. Alex. Acegi Security, Reference Documentation 1.0.7. http://www.acegisecurity.org/guide/springsecurity.pdf, 2008.
2. A. Anderson. XACML Profile for Role Based Access Control (RBAC). OASIS Access Control TC Committee Draft, 1:13, 2004.
3. E. Bertino, E. Ferrari, and V. Atluri. The specification and enforcement of authorization constraints in workflow management systems. ACM Transactions on Information and System Security, 2(1):65-104, 1999.
4. M. Bravenboer, E. Dolstra, and E. Visser. Preventing injection attacks with syntax embeddings. A host and guest language independent approach. In J. Lawall, editor, Generative Programming and Component Engineering (GPCE 2007), pages 3-12, New York, NY, USA, October 2007. ACM.
5. M. Bravenboer and E. Visser. Concrete syntax for objects. Domain-specific language embedding and assimilation without restrictions. In D. C. Schmidt, editor, Object-Oriented Programing, Systems, Languages, and Applications (OOPSLA 2004), pages 365-383, Vancouver, Canada, October 2004. ACM Press.
6. N. Damianou, N. Dulay, E. Lupu, and M. Sloman. The Ponder Policy Specification Language. Policies for Distributed Systems and Networks: Int. Workshop, Policy 2001, Bristol, Uk, January 29-31, 2001: Proceedings, 2001.
7. M. Evered and S. Bögeholz. A case study in access control requirements for a health information system. In ACSW Frontiers, pages 53-61, Darlinghurst, Australia, 2004. Australian Computer Society, Inc.
8. D. Ferraiolo, D. Kuhn, and R. Chandramouli. Role-based Access Control. Artech House, 2003.
9. R. Johnson et al. Professional Java Development with the Spring Framework. Wrox Press Birmingham, UK, 2005.
10. G. Kiczales, E. Hilsdale, J. Hugunin, M. Kersten, J. Palm, and W. Griswold. An overview of AspectJ. Lecture Notes in Computer Science, 2072(327-355):110-121, 2001.
11. U. Latif. A Generalized Temporal Role-Based Access Control Model. IEEE Transactions on Knowledge and Data Engineering, 17(1):4-23, 2005.
12. T. Mikkonen and A. Taivalsaari. Web Applications: Spaghetti Code for the 21st Century. Technical Report TR-2007-166, Sun Microsystems, June 2007.
13. T. Moses et al. eXtensible Access Control Markup Language (XACML) Version 2.0. OASIS Standard, 200502, 2005.
14. J. Park and R. Sandhu. The UCON ABC Usage Control Model. ACM Transactions on Information and System Security, 7(1):128-174, 2004.
15. P. Samarati and S. D. C. di Vimercati. Access control: Policies, models, and mechanisms. In Foundations of Security Analysis and Design on Foundations of Security Analysis and Design (FOSAD'00), pages 137-196, London, UK, 2001. Springer-Verlag.
16. R. Sandhu, D. Ferraiolo, and R. Kuhn. The NIST model for role-based access control: towards a unified standard. Proceedings of the fifth ACM workshop on Role-based access control, pages 47-63, 2000.
17. R. Sandhu and P. Samarati. Access control: principle and practice. Comm. Magazine, IEEE, 32(9):40-48, 1994.
18. R. S. Sandhu. Lattice-based access control models. Computer, 26(11):9-19, 1993.
19. R. S. Sandhu. Role-based access control. In M. Zerkowitz, editor, Advances in Computers, volume 48. Academic Press, 1998.
20. M. C. Tschantz and S. Krishnamurthi. Towards reasonability properties for access-control policy languages. In Proceedings of the eleventh ACM symposium on Access control models and technologies, pages 160-169, New York, NY, USA, 2006. ACM.
21. E. Visser. Syntax Definition for Language Prototyping. PhD thesis, University of Amsterdam, September 1997.
22. E. Visser. Program transformation with Stratego/XT: Rules, strategies, tools, and systems in StrategoXT-0.9. In C. Lengauer et al., editors, Domain-Specific Program Generation, volume 3016 of Lecture Notes in Computer Science, pages 216-238. Spinger-Verlag, June 2004.
23. E. Visser. WebDSL: A case study in domain-specific language engineering. In Generative and Transformational Techniques in Software Engineering (GTTSE 2007), Lecture Notes in Computer Science. Springer, 2008.
24. M. Yuan and T. Heute. JBoss Seam: Simplicity and Power Beyond Java EE. Prentice Hall PTR Upper Saddle River, NJ, USA, 2007.
25. L. Zhang, G. J. Ahn, and B. T. Chu. A rule-based framework for role-based delegation and revocation. ACM Transactions Information and System Security, 6(3):404-441, 2003.
26. X. Zhang, S. Oh, and R. Sandhu. PBDM: a flexible delegation model in RBAC. Proceedings of the eighth ACM symposium on Access control models and technologies, pages 149-157, 2003.