Design and implementation of a flexible RBAC-service in an object-oriented scripting language

Authors:
Gustaf Neumann;Mark Strembeck
Affiliations:
Vienna University of Economics and BA, Austria;Vienna University of Economics and BA, Austria
Venue:
CCS '01 Proceedings of the 8th ACM conference on Computer and Communications Security
Year:
2001

Citing 26
Cited 10

Tcl and the Tk toolkit

Tcl and the Tk toolkit
Design patterns: elements of reusable object-oriented software

Design patterns: elements of reusable object-oriented software
Role-Based Access Control Models

Computer
Extending object-oriented systems with roles

ACM Transactions on Information Systems (TOIS)
Roles: conceptual abstraction theory and practical language issues

Theory and Practice of Object Systems - Special issue on subjectivity in object-oriented systems
hyperDRIVE: leveraging LDAP to implement RBAC on the Web

RBAC '97 Proceedings of the second ACM workshop on Role-based access control
Roles versus groups

RBAC '95 Proceedings of the first ACM Workshop on Role-based access control
Implementing role-based access control using object technology

RBAC '95 Proceedings of the first ACM Workshop on Role-based access control
Component software: beyond object-oriented programming

Component software: beyond object-oriented programming
Role model based framework design and integration

Proceedings of the 13th ACM SIGPLAN conference on Object-oriented programming, systems, languages, and applications
History-based access control for mobile code

CCS '98 Proceedings of the 5th ACM conference on Computer and communications security
A role-based access control model and reference implementation within a corporate intranet

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
RBAC on the Web by smart certificates

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
Role-based access control on the Web using Java

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
Towards the usage of dynamic object aggregations as a foundation for composition

SAC '00 Proceedings of the 2000 ACM symposium on Applied computing - Volume 2
The NIST model for role-based access control: towards a unified standard

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Configuring role-based access control to enforce mandatory and discretionary access control policies

ACM Transactions on Information and System Security (TISSEC)
Role-based authorization constraints specification

ACM Transactions on Information and System Security (TISSEC)
Access Control and Session Management in the HTTP Environment

IEEE Internet Computing
Scripting: Higher-Level Programming for the 21st Century

Computer
A Role-Based Access Control for Intranet Security

IEEE Internet Computing
Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects
Enhancing Object-Based System Composition through Per-Object Mixins

APSEC '99 Proceedings of the Sixth Asia Pacific Software Engineering Conference
Common Lisp Object System specification
XOTcl: an object-oriented scripting language

TCLTK'00 Proceedings of the 7th conference on USENIX Tcl/Tk - Volume 7
Extending Tcl for dynamic object-oriented programming

TCLTK '98 Proceedings of the 3rd Annual USENIX Workshop on Tcl/Tk - Volume 3

A scenario-driven role engineering process for functional RBAC roles

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
An approach to engineer and enforce context constraints in an RBAC environment

Proceedings of the eighth ACM symposium on Access control models and technologies
Experiences with the enforcement of access rights extracted from ODRL-based digital contracts

Proceedings of the 3rd ACM workshop on Digital rights management
A role administration system in role-based authorization infrastructures: design and implementation

Proceedings of the 2003 ACM symposium on Applied computing
An integrated approach to engineer and enforce context constraints in RBAC environments

ACM Transactions on Information and System Security (TISSEC)
Modality conflicts in semantics aware access control

ICWE '06 Proceedings of the 6th international conference on Web engineering
A Monte Carlo framework to evaluate context based security policies in pervasive mobile environments

MobiDE '07 Proceedings of the 6th ACM international workshop on Data engineering for wireless and mobile access
Object-based and class-based composition of transitive mixins

Information and Software Technology
A role and attribute based access control system using semantic web technologies

OTM'07 Proceedings of the 2007 OTM Confederated international conference on On the move to meaningful internet systems - Volume Part II
Generic algorithms for consistency checking of mutual-exclusion and binding constraints in a business process context

OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we present the design and implementation of the xorbac component that provides a flexible RBAC service. The xorbac, implementation conforms to level 4a of the unified NIST model for RBAC and can be reused for arbitrary applications on Unix or Windows with a C or Tcl linkage. xorbac runtime elements can be serialized and recreated from RDF data models conforming to a well-defined RDF schema. Furthermore we present our experiences with xorbac for the deployment within the HTTP environment for a web-based mobile code system.