A Language-based Access Control Approach for Component-based Software Applications

R. Su, J.J. Lukkien, and M.R.V. Chaudron (The Netherlands)


component-based software, languages, access control


In this paper we study security in component-based software applications by looking at information leakage from one component to another through operation calls. We model components and security specifications about confidentiality as regular languages. Then we provide a systematic way to construct an access control mechanism that not only guarantees all specifications to be obeyed, but also allows each user to attain maximum permissive behaviors.

Important Links:

Go Back