Title :
A purpose-oriented access control model
Author :
Yasuda, Masashi ; Tachikawa, Takayuki ; Takizawa, Makoto
Author_Institution :
Dept. of Comput. & Syst. Eng., Tokyo Denki Univ., Japan
Abstract :
In distributed applications, multiple objects cooperate to achieve some objectives. Each object is manipulated through an operation supported by the object and then the operation may further invoke operations of other objects, i.e. nested operations. Purpose-oriented access rules indicate what operation in each object can invoke operations of other objects. Information flow among the objects occurs if the requests and responses of the operations carry data. Only the purpose-oriented access rules which imply legal information flow are allowed. In this paper, we discuss how to specify the access rules so that the information flow occurring in the nested invocation of the operations is legal
Keywords :
access protocols; client-server systems; information flow; legal information flow; purpose-oriented access control model; Access control; Application software; Client-server systems; Data structures; Databases; Electrical capacitance tomography; Encapsulation; Information security; Protection; Systems engineering and theory;
Conference_Titel :
Information Networking, 1998. (ICOIN-12) Proceedings., Twelfth International Conference on
Conference_Location :
Tokyo
Print_ISBN :
0-8186-7225-0
DOI :
10.1109/ICOIN.1998.648373
