R. Su, J.J. Lukkien, and M.R.V. Chaudron (The Netherlands)
component-based software, languages, access control
In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security specifications about confidentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all specifications to be obeyed, but also allows each user to attain maximum permissive behaviors.
Important Links:
Go Back
