Title :
The need for declarative security mechanisms
Author :
Probst, Stefan ; Küng, Josef
Author_Institution :
Software Competence Center Hagenberg, Austria
fDate :
31 Aug.-3 Sept. 2004
Abstract :
Today, security is recognized as an absolute need in application development. Programming environments offer mechanisms and concepts allowing an easy integration of security mechanisms into the application. However, this often has to be done by hand, resulting in extra effort that has to be made during the development cycle. Furthermore, the code is popped up with statements that enforce application or site-specific security requirements, having negative impact on the reusability and maintainability of the code. The goal of This work is to promote the usage of declarative security mechanisms which allow the decoupling of security logic completely from the application logic. Furthermore, the framework GAMMA is presented, that offers several declarative authentication, access control, and auditing mechanisms that can be transparently integrated into software applications.
Keywords :
authorisation; message authentication; programming environments; software maintenance; software reusability; access control; application development; auditing mechanism; message authentication; programming environments; security mechanism; software development cycle; Access control; Application software; Authentication; Authorization; Information security; Logic; Programming environments; Programming profession; Protection; Runtime;
Conference_Titel :
Euromicro Conference, 2004. Proceedings. 30th
Print_ISBN :
0-7695-2199-1
DOI :
10.1109/EURMIC.2004.1333417