论文信息 - Role Based Security and Java

Role Based Security and Java

In the past two years, Java has exploded onto the computing landscape, offering an object-oriented language and environment that is suitable for a wide variety of application domains. Java is targeted for applications that include: advanced capabilities in WWW browsers via applets; enterprise computing with database connectivity, CORBA, and RMI; usage in personal, commercial, and consumer market products; embedded computing applications with real-time constraints; and, smart card technology. Security is an integral component of many of these applications, to control access and prevent misuse. The purpose of this chapter is to focus on the security capabilities and potentials of Java. There must be an understanding of the available security primitives in Java, an investigation of the ability of Java to support existing object-oriented security approaches, and a consideration of potential security solutions for distributed object computing applications.

[1] Zahir Tari,et al. Designing Security Agents for the DOK Federated System , 1997, DBSec.

[2] T. C. Ting,et al. Software Architectural Alternatives for User Role-Based Security Policies , 1997, DBSec.

[3] T. C. Ting,et al. Extensible and Reusable Role-Based Object-Oriented Security , 1996, DBSec.

[4] Danny B. Lange,et al. A Security Model for Aglets , 1997, IEEE Internet Comput..

[5] Peter C. Lockemann,et al. System Guided View Integration for Object-Oriented Databases , 1992, IEEE Trans. Knowl. Data Eng..

[6] Elisa Bertino,et al. A model of authorization for next-generation database systems , 1991, TODS.

[7] T. C. Ting,et al. URBS Enforcement Mechanisms for Object-Oriented Systems , 1995, DBSec.

[8] John F. Barkley,et al. Implementing role-based access control using object technology , 1996, RBAC '95.

[9] C. V. Ramamoorthy,et al. Knowledge and Data Engineering , 1989, IEEE Trans. Knowl. Data Eng..