Embedding role-based access control model in object-oriented systems to protect privacy

Shih-Chien Chou

首页> 外文期刊>The Journal of Systems and Software >Embedding role-based access control model in object-oriented systems to protect privacy

【24h】

Embedding role-based access control model in object-oriented systems to protect privacy

机译：将基于角色的访问控制模型嵌入到面向对象的系统中以保护隐私

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

The role-based access control (RBAC) approach has been recognized as useful in information security and many RBAC models have been proposed. Current RBAC researches focus on developing new models or enhancing existing models. In our research, we developed an RBAC model that can be embedded in object-oriented systems to control information flows (i.e. to protect privacy) within the systems. This paper proposes the model. The model, which is named OORBAC, is an extension of RBAC96. OORBAC offers the following features: (a) precisely control information flows among objects, (b) control method invocation through argument sensitivity, (c) allow purpose-oriented method invocation and prevent leakage within an object, (d) precisely control write access, and (e) avoid Trojan horses. We implemented a prototype for OORBAC using JAVA as the target language. The implementation resulted in a language named OORBACL, which can be used to implement secure applications. We evaluated OORBAC using experiments. The evaluation results are also shown in this paper.

机译：基于角色的访问控制（RBAC）方法已被认为在信息安全中很有用，并且已经提出了许多RBAC模型。 RBAC当前的研究重点是开发新模型或增强现有模型。在我们的研究中，我们开发了一种RBAC模型，该模型可以嵌入到面向对象的系统中，以控制系统内的信息流（即，保护隐私）。本文提出了该模型。该模型名为OORBAC，是RBAC96的扩展。 OORBAC具有以下功能：（a）精确控制对象之间的信息流，（b）通过参数敏感性控制方法的调用，（c）允许面向目的的方法调用并防止对象内的泄漏，（d）精确地控制写访问，（e）避免使用特洛伊木马。我们使用JAVA作为目标语言为OORBAC实现了原型。该实现产生了一种名为OORBACL的语言，可用于实现安全的应用程序。我们使用实验评估了OORBAC。评估结果也显示在本文中。

著录项

来源
《The Journal of Systems and Software》 |2004年第2期|p.143-161|共19页
作者
Shih-Chien Chou;
展开▼
作者单位

Department of Computer Science and Information Engineering, National Dong Hwa University, 1, Section 2, Da Hsueh Road, Shoufeng, Hualien 974, Taiwan;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类计算技术、计算机技术;
关键词
information flow control; security; protect privacy; object-oriented systems;

机译：信息流控制;安全性;保护隐私;面向对象系统;

相似文献

外文文献
中文文献
专利

1. Formal Description for an Object-Oriented Role-based Access Control Model [J] . Chungen Xu, Sheng Gong Computer and Information Science . 2009,第2期

机译：面向对象的基于角色的访问控制模型的形式描述
2. An object-oriented organizational model to support dynamic role-based access control in electronic commerce [J] . Edward C. Cheng Decision support systems . 2000,第4期

机译：面向对象的组织模型，用于支持电子商务中基于角色的动态访问控制
3. Modeling Level Wise Role-Based Access Control for Commercial Database Systems [J] . Trilochan Tarai, Pradipta Kumar Mishra International Journal of Engineering Research and Applications . 2014,第5期

机译：商业数据库系统的建模级基于角色的明智访问控制
4. THE PRIVACY-AWARE ACCESS CONTROL SYSTEM USING ATTRIBUTE-AND ROLE-BASED ACCESS CONTROL IN PRIVATE CLOUD [C] . Ei Ei Mon, Thinn Thu Naing 2011 4th IEEE International Conference on Broadband Network and Multimedia Technology . 2011

机译：在私有云中使用基于角色和角色的访问控制的隐私保护访问控制系统
5. A secure object-oriented role-based access control model for distributed systems. [D] . Yang, Cungang. 2003

机译：用于分布式系统的安全的，面向对象的，基于角色的访问控制模型。
6. A Role-Based Access Control Model in Modbus SCADA Systems. A Centralized Model Approach [O] . Santiago Figueroa-Lorenzo, Javier Añorga, Saioa Arrizabalaga 2019

机译：Modbus SCADA系统中的基于角色的访问控制模型。集中模型方法
7. LnRBAC: A Multiple-Levelled Role-Based Access Control Model for Protecting Privacy in Object-Oriented Systems. [O] . Shih-Chien Chou 2004

机译：LNRBAC：一种用于保护面向对象系统中隐私的基于多级角色的访问控制模型。

Embedding role-based access control model in object-oriented systems to protect privacy

摘要

著录项

相似文献

相关主题

期刊订阅