Title :
Access Control in JavaScript
Author :
Toledo, Rodolfo ; Tanter, Éric
Author_Institution :
Univ. of Chile, Santiago, Chile
Abstract :
ZAC is a practical lightweight library for access control in JavaScript based on aspect orientation. Its access control architecture is stack based, similar to those of Java and C#. However, ZAC integrates other features for more expressive access control. First, access control policies can be enforced at the level of objects, which permits more fine-grained control over resource access. Second, policies in ZAC can base their decisions on scripts´ execution history. This lets developers express policies that are impossible to define using other models, such as bounded-time execution.
Keywords :
Java; aspect-oriented programming; authorisation; software libraries; JavaScript; ZAC; access control architecture; access control policies; aspect orientation; script execution history; Access control; Computer architecture; Computer languages; Java; Performance analysis; Semantics; Software engineering; language constructs and features; scripting languages; semantics; software; software engineering;
Journal_Title :
Software, IEEE
DOI :
10.1109/MS.2010.154
