Information Flow Control among Objects: Taking Foreign Objects into Control
نویسنده
چکیده
This paper proposes a model to control information flows among objects. It improves flexibility of the control by independently assigning security levels to attributes, arguments, and return values. It uses associations and multiple labels to control information flows among objects that may be dynamically instantiated during program execution. According to our survey, no model offers the control as precisely as our model does. In addition to controlling objects, the model also controls foreign objects, which are those dynamically retrieved for reuse during program execution. Rules are designed to prevent foreign objects from becoming Trojan horses.
منابع مشابه
Providing flexibility in information flow control for object oriented systems
This paper presents an approach to control information flow in object-oriented systems that takes into account, besides authorizations on objects, also how the information has been obtained and/or transmitted. These aspects are considered by allowing exceptions to the restrictions stated by the authorizations. Exceptions are specified by means of waivers associated with methods. Two kinds of wa...
متن کاملA Transaction-Based Purpose-Oriented Access Control Model for Information Flow Management
Distributed applications are realized by cooperation of multiple objects. Each object is manipulated through a method supported by the object and then the method may further invoke methods of other objects. Purpose-oriented access rules indicate what methods in objects can invoke methods of other objects. Information flow among the objects occurs if the requests and responses of the methods car...
متن کاملA Purpose-Oriented Access Control Model
In distributed applications, multiple objects cooperate to achieve some objectives. Each object is manipulated through an operation supported by the object and then the operation may further invoke operations of other objects, i.e. nested operations. Purpose-oriented access rules indicate what operation in each object can invoke operations of other objects. Information flow among the objects oc...
متن کاملTaking an object-centric view on dynamic information with object flow analysis
A large body of research analyzes the runtime execution of a system to extract abstract behavioral views. Those approaches primarily analyze control flow by tracing method execution events or they analyze object graphs of heap memory snapshots. However, they do not capture how objects are passed through the system at runtime. We refer to the exchange of objects as the object flow, and we claim ...
متن کاملInformation Flow in a Purpose-Oriented Access Control Model
In distributed applications, a group of multiple objects are cooperating to achieve some objectives. An object is modeled as a pair of data structure and operations. Each object is manipulated through an operation supported by the object and then the operation may further invoke operations of other objects, i.e. nested operations. The purpose-oriented access rules indicate what operation in eac...
متن کامل