A Purpose-Oriented Access Control Model

نویسندگان

  • Masashi Yasuda
  • Takayuki Tachikawa
  • Makoto Takizawa
چکیده

In distributed applications, multiple objects cooperate to achieve some objectives. Each object is manipulated through an operation supported by the object and then the operation may further invoke operations of other objects, i.e. nested operations. Purpose-oriented access rules indicate what operation in each object can invoke operations of other objects. Information flow among the objects occurs if the requests and responses of the operations carry data. Only the purpose-oriented access rules which imply legal information flow are allowed. In this paper, we discuss how to specify the access rules so that the information flow occurring in the nested invocation of the operations is legal.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

An ontological framework for situation-aware access control of software services

Situation-aware applications need to capture relevant context information and user intention or purpose, to provide situation-specific access to software services. As such, a situation-aware access control approach coupled with purpose-oriented information is of critical importance. However, modelling purpose-oriented situations is a challenging task. Existing modelling approaches for situation...

متن کامل

Role-Based Purpose-Oriented Access Control for Distributed Systems

Various kinds of distributed applications have been developed by using object-oriented technologies. Object-oriented technologies like CORBA are widely used to realize the interoperability of the applications. Object-oriented systems are composed of multiple objects which cooperate to achieve some objectives by passing messages. In addition to realizing the interoperability, it is essential to ...

متن کامل

Information Flow in a Purpose-Oriented Access Control Model

In distributed applications, a group of multiple objects are cooperating to achieve some objectives. An object is modeled as a pair of data structure and operations. Each object is manipulated through an operation supported by the object and then the operation may further invoke operations of other objects, i.e. nested operations. The purpose-oriented access rules indicate what operation in eac...

متن کامل

Modeling of RBAC-based access control of virtual enterprise

Purpose – The purpose of this paper is to create a model of role-based access control (RBAC) based access control for virtual enterprise (VE). Design/methodology/approach – An access control model for security and management of VE is presented by integrating generic structure of VE and applying the principles of RBAC. In addition, the application of the model to a supply chain-oriented VE illus...

متن کامل

A Purpose-Oriented Access Control Model for Object-Based Systems

Distributed applications are modeled in an object-based model like CORBA [1]. Here, the system is a collection of objects. The objects are manipulated only through operations supported by themselves. The purpose-oriented model [2] is proposed where an access rule shows for what each subject s manipulates an object o by an operation t of o so as to keep the information flow legal. The purpose of...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 1997