A language-based access control approach for component-based software applications

R. Su; J.J. Lukkien; M.R.V. Chaudron

A language-based access control approach for component-based software applications

Mathematics and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

Abstract

In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security speci¿cations about con¿dentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all speci¿cations to be obeyed, but also allows each user to attain maximum permissive behaviors.

Original language	English
Title of host publication	Proceedings 10th IASTED International Conference on Software Engineering and Applications (SEA 2006, Dallas TX, USA, November 13-15, 2006)
Editors	A.M.K. Cheng
Place of Publication	Anaheim
Publisher	ACTA Press
Pages	233-238
ISBN (Print)	0-88986-642-2
Publication status	Published - 2006

Publication series

Name	IAESTED Conference Proceedings
Volume	514

Cite this

Su, R., Lukkien, J. J., & Chaudron, M. R. V. (2006). A language-based access control approach for component-based software applications. In A. M. K. Cheng (Ed.), Proceedings 10th IASTED International Conference on Software Engineering and Applications (SEA 2006, Dallas TX, USA, November 13-15, 2006) (pp. 233-238). (IAESTED Conference Proceedings; Vol. 514). ACTA Press.

@inproceedings{3273f016b30c4a08a30636b0a82f76e7,

title = "A language-based access control approach for component-based software applications",

abstract = "In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security speci¿cations about con¿dentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all speci¿cations to be obeyed, but also allows each user to attain maximum permissive behaviors.",

author = "R. Su and J.J. Lukkien and M.R.V. Chaudron",

year = "2006",

language = "English",

isbn = "0-88986-642-2",

series = "IAESTED Conference Proceedings",

publisher = "ACTA Press",

pages = "233--238",

editor = "A.M.K. Cheng",

booktitle = "Proceedings 10th IASTED International Conference on Software Engineering and Applications (SEA 2006, Dallas TX, USA, November 13-15, 2006)",

address = "Canada",

}

A language-based access control approach for component-based software applications. / Su, R.; Lukkien, J.J.; Chaudron, M.R.V.

Proceedings 10th IASTED International Conference on Software Engineering and Applications (SEA 2006, Dallas TX, USA, November 13-15, 2006). ed. / A.M.K. Cheng. Anaheim : ACTA Press, 2006. p. 233-238 (IAESTED Conference Proceedings; Vol. 514).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - A language-based access control approach for component-based software applications

AU - Su, R.

AU - Lukkien, J.J.

AU - Chaudron, M.R.V.

PY - 2006

Y1 - 2006

N2 - In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security speci¿cations about con¿dentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all speci¿cations to be obeyed, but also allows each user to attain maximum permissive behaviors.

AB - In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security speci¿cations about con¿dentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all speci¿cations to be obeyed, but also allows each user to attain maximum permissive behaviors.

M3 - Conference contribution

SN - 0-88986-642-2

T3 - IAESTED Conference Proceedings

SP - 233

EP - 238

BT - Proceedings 10th IASTED International Conference on Software Engineering and Applications (SEA 2006, Dallas TX, USA, November 13-15, 2006)

A2 - Cheng, A.M.K.

PB - ACTA Press

CY - Anaheim

ER -

A language-based access control approach for component-based software applications

Abstract

Publication series

Fingerprint

Cite this