Skip to main content
Springer Nature Link
Log in

Non-functional Capability-Based Access Control in the Java Environment

  • Conference paper
  • First Online:
Object-Oriented Information Systems (OOIS 2002)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2425))

Included in the following conference series:

  • 472 Accesses

Abstract

This paper describes a capability-based access control mechanism implemented on a Java environment. In this scheme, access to objects is controlled by means of software capabilities that can be exchanged between mutually suspicious interacting applications. Each application defines the access control rules that must be enforced when interacting with other applications. The definition of access right is managed as a non-functional aspect in the sense it is completely separated from the application code, thus enforcing modularity and ease of expression. It is described in an extended Interface Definition Language (IDL) at the interface level. We have experimented with two prototypes that show how this access control mechanism can be efficiently implemented on a standard Java environment.

This work is supported by the Réseau National des Technologies Logicielles (RNTL Arcad).

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. BCEL, http://bcel.sourceforge.net/

  2. J. Chase, H. Levy, M. Feeley, E. Lazowska, Sharing and Protection in a Single-Address-Space Operating System, ACM Transactions on Computer Systems, 12(4), November 1994.

    Google Scholar 

  3. D. Chess, C. Harrison, A. Kershenbaum, Mobile Agents: Are They a Good Idea?, IBM Research Division, T.J. Watson Research Center, New York, March 1995.

    Google Scholar 

  4. D. England, Capability, Concept, Mechanism and Structure in System 250, RAIRO-Informatique (AFCET), Vol 9, September 1975.

    Google Scholar 

  5. J. Gosling and H. McGilton, The Java Language Environment: a White Paper, Sun Microsystems Inc., 1996.

    Google Scholar 

  6. G. Kiczales, C. Lopes, Aspect-Oriented Programming with AspectJ, Technical Report, Xerox PARC, 1998.

    Google Scholar 

  7. H. Levy, Capability-Based Computer Systems, Digital Press, 1984.

    Google Scholar 

  8. M. Shapiro, Structure and Encapsulation in Distributed Systems: The Proxy Principle, 6th International Conference on Distributed Computing Systems, 1986.

    Google Scholar 

  9. Sun Microsystems, Inc. Enterprise Java Beans Specification, Sun Microsystems, 2000.

    Google Scholar 

  10. A. Tanenbaum, S. Mullender, R. Van Renesse, Using Sparse Capabilities in a Distributed Operating System, 6th International Conference on Distributed Computing Systems, 1986.

    Google Scholar 

  11. M. Wilkes, R. Needham, The Cambridge CAP Computer and its Operating System, North Holland, 1979.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. INRIA Rhône-Alpes, 655 avenue de l’Europe, 38334, Saint-Ismier Cedex, France

    Daniel Hagimont

  2. France Telecom R&D, 28 chemin du vieux chêne, BP98, 38243, Meylan Cedex, France

    Noël De Palma

Authors
  1. Daniel Hagimont
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Noël De Palma
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. UMR 5506 CNRS LIRMM - Laboratoire d’Informatique, de Robotique et de Microélectronique de Montpellier, Université Montpellier II, 161, Rue Ada, 34392, Montpellier, France

    Zohra Bellahsène

  2. School of Computing, Information Systems and Mathematics Centre for Information and Organisation Studies, South Bank University, 103 Borough Road, SE1 0AA, London, UK

    Dilip Patel

  3. Panthéon Sorbonne Centre de Recherche en Informatique, Université Paris 1, 90 Rue de Tolbiac, 75634, Paris cedex 13, France

    Colette Rolland

Rights and permissions

Reprints and permissions

Copyright information

© 2002 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Hagimont, D., De Palma, N. (2002). Non-functional Capability-Based Access Control in the Java Environment. In: Bellahsène, Z., Patel, D., Rolland, C. (eds) Object-Oriented Information Systems. OOIS 2002. Lecture Notes in Computer Science, vol 2425. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-46102-7_36

Download citation

  • DOI: https://doi.org/10.1007/3-540-46102-7_36

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-44087-1

  • Online ISBN: 978-3-540-46102-9

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics