Title :
Facet-based access control model for View-Oriented Programming
Author :
Adda, Mehdi ; Mcheick, Hamid
Author_Institution :
Dept. de Math., Inf. et Genie, Univ. du Quebec a Rimouski, Rimouski, QC, Canada
Abstract :
Security is an integral part of the modern software systems and applications in which a client program can access different functional aspects (views) of the same domain. These views (View-Oriented Programming-VOP), as a separation of concerns approach, enable us to manage the complexity of the software systems and to accomplish greater reuse and maintainability. In VOP, an object´s response to a message depends on the views currently attached to its core instance. View-oriented programming suffers from a formal model and security issues to protect the privileges of each client who needs to access different views of the same object. This paper describes a facet-based access control model to handle security issues in VOP. Especially, it introduces algebra and formalism to describe VOP and to protect the privileges of each client program. These issues are discussed through an example.
Keywords :
algebra; authorisation; client-server systems; formal specification; software maintenance; software metrics; software reusability; algebra; client program; facet-based access control model; formal model; software reuse; software systems complexity; software systems security; softwre maintainability; view-oriented programming; Algebra; Authorization; Java; Organizations; Programming; Role based access control; Security; Separation of concerns; Software reuse; View oriented programming;
Conference_Titel :
Computer Systems and Applications (AICCSA), 2010 IEEE/ACS International Conference on
Conference_Location :
Hammamet
Print_ISBN :
978-1-4244-7716-6
DOI :
10.1109/AICCSA.2010.5586940
