History-based access control for mobile code
CCS '98 Proceedings of the 5th ACM conference on Computer and communications security
History-based access control for mobile code
Secure Internet programming
Mobile agent security based on payment
ACM SIGOPS Operating Systems Review
| Hi-index | 0.00 |
In this paper, we present a {\em history-based} access-control mechanism that is suitable for mediating accesses from mobile code. Combined with a suitable identity-based mechanism (eg, digital signatures), it significantly expands the set of programs that can be executed without compromising security or ease of use. We present {\em Deeds} a history-based access control mechanism for Java. Apart from history-based nature, the other important feature of Deeds is its capability to install and compose multiple user-specified policies. Access control policies in Deeds are written in Java, and can be updated while the programs whose accesses are being mediated is still in execution.