Abstract

The role-based access control (RBAC) approach has been recognized as useful in information security and many RBAC models have been proposed. Current RBAC researches focus on developing new models or enhancing existing models. In our research, we developed an RBAC model that can be embedded in object-oriented systems to control information flows (i.e. to protect privacy) within the systems. This paper proposes the model. The model, which is named OORBAC, is an extension of RBAC96. OORBAC offers the following features: (a) precisely control information flows among objects, (b) control method invocation through argument sensitivity, (c) allow purpose-oriented method invocation and prevent leakage within an object, (d) precisely control write access, and (e) avoid Trojan horses. We implemented a prototype for OORBAC using JAVA as the target language. The implementation resulted in a language named OORBACL, which can be used to implement secure applications. We evaluated OORBAC using experiments. The evaluation results are also shown in this paper.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
The Low-Cost Secure Sessions of Access Control Model for Distributed Applications by Public Personal Smart Cards
Kuo-Yi Chen ... Ting-Wei Hou
-
Kuo-Yi Chen, et. al.Kuo-Yi Chen ... Ting-Wei Hou
01 Dec 2011
A Flexible Role Based Access Control Engine Model
Zhen Wu Wang
Advanced Materials Research | VOL. 403-408
Zhen Wu WangZhen Wu Wang
01 Nov 2011
An Improved Role-Based Workflow Access Control Model
Hui Zhao ... Lianyu Zhao
-
Hui Zhao, et. al.Hui Zhao ... Lianyu Zhao
01 Apr 2008
Research on the Tracking Algorithm of Program Level Fine-grained Data based on Cloud Virtual Environment
Hongyi Zhang ... Zhigang Zhang
-
Hongyi Zhang, et. al.Hongyi Zhang ... Zhigang Zhang
01 Jan 2015
View more papers

More From: The Journal of Systems & Software

Paper Title
Journal
Date
Author
Symbolic execution of floating-point programs: How far are we?
Xu Yang ... Ji Wang
The Journal of Systems & Software | VOL. -
Xu Yang, et. al.Xu Yang ... Ji Wang
07 Nov 2024
Retriever: A view-based approach to reverse engineering software architecture models
Yves R Kirschner ... Anne Koziolek
The Journal of Systems & Software | VOL. -
Yves R Kirschner, et. al.Yves R Kirschner ... Anne Koziolek
01 Nov 2024
Awareness support in collaborative programming tools: An evaluation based on programmer's perception and eye tracking
Ana I Molina ... Miguel A Redondo
The Journal of Systems & Software | VOL. -
Ana I Molina, et. al.Ana I Molina ... Miguel A Redondo
01 Nov 2024
Editorial Board
-
The Journal of Systems & Software | VOL. 217
--
01 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.