Supporting parameterised roles with object-based access control

Proceedings of the 36th Annual Hawaii International Conference on System Sciences, HICSS 2003

Volumn , Issue , 2003, Pages

  Evered, M ^a  

^a UNIVERSITY OF NEW ENGLAND   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

MEDICAL INFORMATION SYSTEMS; PARAMETERIZATION;

ACCESS CONTROL LISTS; HEALTH INFORMATION SYSTEMS; INTERNET TECHNOLOGY; PATIENT ACCESS; REAL APPLICATIONS; ROLE-BASED ACCESS CONTROL; SECURITY CONSTRAINT; STATE-DEPENDENT;

ACCESS CONTROL;

EID: 84969506875     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/HICSS.2003.1174463     Document Type: Conference Paper

References (27)

1. Anderson, M., Pose, R.D., Wallace, C.S. A Password-Capability System, The Computer Journal, 29,1, pp.1-8, 1986.
2. Bell, D.E. and LaPadula, L.J., Secure Computer Systems: Mathematical Foundations, Mitre Corp., Bedford, MA, Technical Report ESD-TR-73-278, 1973.
3. Blakley, B., Blakley, R., Soley, R.M., CORBA Security: An Introduction to Safe Computing with Objects, Addison-Wesley, 2000.
4. Brose, G., A View-Based Access Control Model for CORBA, in: Jan Vitek, Christian Jensen (eds.), Secure Internet Programming: Security Issues for Mobile and Distributed Objects, LNCS 1603, Springer 1999.
5. Covington, M.J., Moyer, M.J. and Ahamad, M., Generalized Role-based Access Control for Securing Future Applications, Proc. 23rd National Information Systems Security Conference, Baltimore, 2000.
6. Eddon, G., The COM+ Security Model Gets You Out of the Security Programming Business, Microsoft Systems Journal, Nov. 1999.
7. Evered, M., A Two-Level Architecture for Semantic Protection of Persistent Distributed Objects, Proc. Intl. Conf. on Software Methods and Tools, Wollongong, 2000.
8. Evered, M., Type Operators for Role-based Object Security, 3rd IFIP/ACM Intl. Conf. on Distributed Systems Platforms - Middleware, Heidelberg, 2001.
9. Evered, M., Bracket Capabilities for Distributed Systems Security, Proc. 25th Australasian Computer Science Conference, Melbourne, 2002.
10. Evered, M., Opsis: A Distributed Object Architecture Based on Bracket Capabilities, Proc. Conference on Technology of Object-Oriented Languages and Systems, Sydney, 2002.
11. Ferraiolo, D.F., Cugini, J.A. and Kuhn, D.R., Role Based Access Control: Features and Motivations, Proc. 11th Annual Computer Security Applications Conference, 1995.
12. Fondón, M.A. et al. Merging Capabilities with the Object Model of an Object-Oriented Abstract Machine, 12th European Conference on Object-Oriented Programming, Brussels, 1998
13. Gamma, E. et al., Design Patterns, Addison-Wesley, 1995.
14. Giuri, L. and Iglio, P., Role templates for content-based access control, Proc. 2nd ACM Role-Based Access Control Workshop, November 1997.
15. Gosling, J., Joy, B. and Steele, G., The Java Language Specification, Reading, MA: Addison-Wesley, 1996.
16. Harrison, M.A., Ruzzo, W.L., Ullman, J.D., Protection in Operating Systems, Communications of the ACM, 19, 8, 1976.
17. Joshi, J.B.D. et al., Security Models for Web-based Applications, Communications of the ACM, 44, 2, 2001.
18. Jones, A. and Liskov, B. A language extension for expressing constraints on data access. Communications of the ACM, 21(5):358-367, May 1978.
19. Keedy, J.L., et al., "Software Reuse in an Object Oriented Framework: Distinguishing Types from Implementations and Objects from Attributes", Proc. Sixth International Conference on Software Reuse, Vienna, 2000.
20. Keedy, J.L. and Vosseberg, K., Persistent Protected Modules and Persistent Processes as the Base for a More Secure Operating System, Proc. 25th Hawaii Intl. Conf. on System Sciences, 1992.
21. Lupu, E.C. and Sloman, M., Reconciling role-based management and role-based access control, Proc. 2nd ACM Role-Based Access Control Workshop, November 1997.
22. Mishra, P. and Eich, M.H., Taxonomy of views in OODBs, Proc. ACM Computer Science Conference, 1994.
23. Mullender, S.J., Tanenbaum, A.S. The Design of a Capability-Based Distributed Operating System, Computer Journal, 29,4, pp.289-299, 1986.
24. Rosenberg, J., Abramson, D. A. The MONADS Architecture: Motivation and Implementation, Proc. First Pan Pacific Computer Conference, p. 4/10-4/23, 1985.
25. Sun Microsystems Inc., Java Security Architecture, http://java.sun.com/products/jdk/1.2/docs/guide/security/spec/security-spec.doc.html
26. Thuraisingham, M.B., Mandatory Security in Object-Oriented Database Systems, Proc. Intl. Conf. on Object-Oriented Programming Systems, Languages and Applications, ACM Sigplan Notices, 24, 10, 1989.
27. Wilkes, M.V., Needham, R.M. The Cambridge CAP Computer and its Operating System, North Holland, 1979.