A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL.
The file type is application/pdf
.
Weaving rewrite-based access control policies
2007
Proceedings of the 2007 ACM workshop on Formal methods in security engineering - FMSE '07
Access control is a central issue among the overall security goals of information systems. Despite the existence of a vast literature on the subject, it is still very hard to assure the compliance of a large system to a given dynamic access control policy. Based on our previous work on formal islands, we provide in this paper a systematic methodology to weave dynamic, formally specified policies on existing applications using aspect-oriented programming. To that end, access control policies are
doi:10.1145/1314436.1314446
dblp:conf/ccs/OliveiraWKK07
fatcat:rzm5r6fqcjhp5dx3wcamqlr7z4