论文信息 - Distributing and revoking access authorizations on abstract objecs: A capability approch

Distributing and revoking access authorizations on abstract objecs: A capability approch

In this paper a capability addressing environment is presented, based on the concept of extended capability. First of all it is shown that such an environment is well suited for implementing objects of abstract type. Then the problem of distributing and revoking access authorizations on abstract objects is considered and an efficient solution is presented. The revocation mechanism results in being selective, transitive and deferred.

Lanfranco Lopriore | Paolo Corsini | Graziano Frosini

[1] John V. Guttag,et al. Abstract data types and the development of data structures , 1977, CACM.

[2] Theodore A. Linden. Operating System Structures to Support Security and Reliable Software , 1976, CSUR.

[3] Lanfranco Lopriore,et al. Protection structures in computer systems , 1982 .

[4] J. J. Horning,et al. Report on the programming language Euclid , 1977, SIGP.

[5] Lanfranco Lopriore,et al. The Implementation of Abstract Objects in a Capability Based Addressing Architecture , 1984, Comput. J..

[6] Edwin H. Satterthwaite,et al. Early experience with Mesa , 1977, CACM.

[7] Butler W. Lampson,et al. Dynamic protection structures , 1899, AFIPS '69 (Fall).

[8] Virgil D. Gligor. Review and Revocation of Access Privileges Distributed Through Capabilities , 1979, IEEE Transactions on Software Engineering.

[9] Henry Ledgard,et al. Reference Manual for the ADA® Programming Language , 1983, Springer New York.

[10] Antonio Natali,et al. Linguistic mechanisms for resource management strategies , 1981, Softw. Pract. Exp..

[11] Robert S. Fabry,et al. Capability-based addressing , 1974, CACM.

[12] Stephen N. Zilles,et al. Programming with abstract data types , 1974 .