Concepts and experiments in computational reflection
OOPSLA '87 Conference proceedings on Object-oriented programming systems, languages and applications
The Apertos reflective operating system: the concept and its implementation
OOPSLA '92 conference proceedings on Object-oriented programming systems, languages, and applications
Reflection and metalevel architectures in object-oriented programming (workshop session)
OOPSLA/ECOOP '90 Proceedings of the European conference on Object-oriented programming addendum : systems, languages, and applications: systems, languages, and applications
Monitoring, security, and dynamic configuration with the dynamicTAO reflective ORB
IFIP/ACM International Conference on Distributed systems platforms
Communications of the ACM - Adaptive middleware
Java Language Specification, Second Edition: The Java Series
Java Language Specification, Second Edition: The Java Series
Access control: principles and solutions
Software—Practice & Experience - Special issue: Security software
A security framework for reflective Java applications
Software—Practice & Experience
PKUAS: An Architecture-Based Reflective Component Operating Platform
FTDCS '04 Proceedings of the 10th IEEE International Workshop on Future Trends of Distributed Computing Systems
Towards Autonomic Computing Middleware via Reflection
COMPSAC '04 Proceedings of the 28th Annual International Computer Software and Applications Conference - Volume 01
Runtime recovery and manipulation of software architecture of component-based systems
Automated Software Engineering
The design and implementation of Guaraná
COOTS'99 Proceedings of the 5th conference on USENIX Conference on Object-Oriented Technologies & Systems - Volume 5
The Design and Implementation of Open ORB 2
IEEE Distributed Systems Online
An Approach for Generation of J2EE Access Control Configurations from Requirements Specification
QSIC '08 Proceedings of the 2008 The Eighth International Conference on Quality Software
Proceedings of the ACM/IFIP/USENIX 2003 International Conference on Middleware
Architecture based deployment of large-scale component based systems: the tool and principles
CBSE'05 Proceedings of the 8th international conference on Component-Based Software Engineering
Hi-index | 0.00 |
Reflective middleware opens up the implementation details of middleware platform and applications at runtime for improving the adaptability of middleware-based systems. However, such openness brings new challenges to access control of the middleware-based systems. Some users can access the system via reflective entities, which sometimes cannot be protected by access control mechanisms of traditional middleware. To deliver high adaptability securely, reflective middleware should be equipped with proper access control mechanisms for potential access control holes induced by reflection. One reason of integrating these mechanisms in reflective middleware is that one goal of reflective middleware is to equip applications with reflection capabilities as transparent as possible. This paper studies how to design a reflective J2EE middleware -- PKUAS with access control in mind. At first, a computation model of reflective system is built to identify all possible access control points induced by reflection. Then a set of access control mechanisms, including the wrapper of MBeans and a hierarchy of Java class loaders, are equipped for controlling the identified access control points. These mechanisms together with J2EE access control mechanism form the access control framework for PKUAS. The paper evaluates the security and the performance overheads of the framework in quality and quantity.