Embedding JAAS in agent roles to apply local security policies

Authors:
Giacomo Cabri;Luca Ferrari;Letizia Leonardi
Affiliations:
Università di Modena e Reggio Emilia, Modena, Italy;Università di Modena e Reggio Emilia, Modena, Italy;Università di Modena e Reggio Emilia, Modena, Italy
Venue:
Proceedings of the 3rd international symposium on Principles and practice of programming in Java
Year:
2004

Citing 5
Cited 1

Design patterns: elements of reusable object-oriented software

Design patterns: elements of reusable object-oriented software
Role-Based Access Control Models

Computer
An agent-based approach for building complex software systems

Communications of the ACM
ROPE: Role Oriented Programming Environment for Multiagent Systems

COOPIS '99 Proceedings of the Fourth IECIS International Conference on Cooperative Information Systems
Implementing Role-based Interactions for Internet Agents

SAINT '03 Proceedings of the 2003 Symposium on Applications and the Internet

Applying security policies through agent roles: a JAAS based approach

Science of Computer Programming - Special issue: Principles and practices of programming in Java (PPPJ 2004)

Quantified Score

Hi-index	0.00

Visualization

Abstract

Agents are an emerging technology that grants programmers a new way to exploit distributed resources. Roles are a powerful concept that can be used to model agent interactions, allowing agents to dynamically acquire operations to make specific tasks, and enabling separation of concerns and code reusability. Nevertheless roles should be developed taking into account permissions needed for the execution of their operations. The standard Java policy file mechanism does not suffice in this scenario, since a fine grain in managing permissions is required. This paper focuses on how to exploit the Java Authentication and Authorization Service (JAAS) at the role level in order to apply authorization and local policies to Java agents for limiting their operations.