A flexible access control service for Java mobile code

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2000-January, Issue , 2000, Pages 356-365

  Corradi, A ^a   Montanari, R ^a   Lupu, E ^b   Sloman, M ^b   Stefanelli, C ^c  

^a UNIVERSITY OF BOLOGNA   (Italy)

^b IMPERIAL COLLEGE LONDON   (United Kingdom)

^c UNIVERSITY OF FERRARA   (Italy)

Author keywords

Access control; Dynamic programming; Information security; Internet; Java; Mobile computing; Network servers; Permission; Protection; Web server

Indexed keywords

ACCESS CONTROL; CODES (SYMBOLS); COMPUTATIONAL LINGUISTICS; DYNAMIC LOADS; DYNAMIC PROGRAMMING; INTERNET; JAVA PROGRAMMING LANGUAGE; MEMORY ARCHITECTURE; MOBILE COMPUTING; NETWORK ARCHITECTURE; SECURITY OF DATA; SECURITY SYSTEMS; XML;

JAVA; NETWORK SERVER; PERMISSION; PROTECTION; WEB SERVERS;

NETWORK SECURITY;

EID: 84949500337     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2000.898890     Document Type: Conference Paper

References (20)

1. A. Fuggetta, et al., "Understanding Code Mobility", IEEE Transactions on Software Engineering, Vol. 24, No. 5, 1998.
2. J.W. Stamos, and D.K. Gifford, "Remote Evaluation", ACM Transaction on Programming Languages and Systems, Vol. 12, No. 4, 1990.
3. K. Rothermel, and F. Hohl (ed.), 2nd International Workshop on Mobile Agents, Springer-Verlag, Lecture Notes in Computer Science, Vol. 1477, Sep. 1998.
4. G. Goldszmidt, and Y. Yemini, "Distributed Management by Delegation", IEEE 15th International Conference on Distributed Computing Systems, IEEE Computer Society, Vancouver, 1995.
5. G. Vigna, (ed.), "Mobile Agents and Security", LNCS 1419, Springer-Verlag, 1998.
6. L. Gong, "Java Security: Present and Near Future", IEEE Micro, Vol.17, N.3., 1997.
7. L. Gong, "Inside Java 2 Platform Security", Addison Wesley, 1999.
8. S. Jajodia, et. al., "A Logical Language for Expressing Authorisations", IEEE Symposium on Security and Privacy, Oakland, 1997.
9. th Annual Computer Security Applications Conference, Scottsdale, 1998.
10. N. Damianou, et al., "Ponder: A Language for specifying Security and Management Policies for Distributed Systems, V 2.2", Imperial College Research Report DoC 2000/1, http://www-dse.doc.ic.ac.uk/policies/ponder.html
11. J. Gosling, et al., "The Java Language Specification", Addison-Wesley, Manlo Park, 1996.
12. G. Necula, "Proof Carrying Code", 24th ACM SIGPLAN-SIGACT Symposium on Principle of Programming Languages, ACM, Paris, 1997.
13. T. Jaeger, et al., "Flexible control of downloaded executable content", ACM Transactions on Information and System Security, Vol. 2, No. 2, 1999.
14. M. Blaze, et al., "The Role of Trust Management in Distributed Systems Security", Secure Internet Programming: Issues in Distributed and Mobile Object Systems, LNCS, 1999.
15. th ACM Conference on Computer and Communications Security, San Francisco, 1998.
16. E. Lupu, and M. Sloman., "Conflicts in Policy-Based Distributed Systems Management" IEEE Transactions on Software Engineering, Vol. 25, No. 6, 1999.
17. R. Sandhu, et al., "Role-Based Access Control Models", IEEE Computer, Vol. 29, No. 2, 1996.
18. E. Lupu, and M. Sloman, "Reconciling Role Based Management and Role Based Access Control", 2nd ACM Role Based Access Control Workshop, Fairfax, 1997.
19. E. Lupu, "A Role-Based Framework for Distributed Systems Management", Ph.D. Dissertation, Imperial College, Dept. of Computing, London, 1998.
20. C. Lai, et al., "User Authentication and Authorization in the Java Platform", 15th Annual Computer Security Applications Conference, Phoenix, 1999.