| |
VOLUME 4, ISSUE 1, PAPER 2
|
Lambda-RBAC: Programming with Role-Based Access Control
|
©Radha Jagadeesan, CTI, Depaul University
©Alan Jeffrey, Bell Labs
©Corin Pitcher, CTI, Depaul University
©James Riely, CTI, Depaul University
|
Abstract
We study mechanisms that permit program components to express role
constraints on clients, focusing on programmatic security mechanisms, which
permit access controls to be expressed, in situ, as part of the code realizing
basic functionality. In this setting, two questions immediately arise: (1) The
user of a component faces the issue of safety: is a particular role sufficient
to use the component? (2) The component designer faces the dual issue of
protection: is a particular role demanded in all execution paths of the
component? We provide a formal calculus and static analysis to answer both
questions.
|
Publication date: January 9, 2008
Full Text: PDF | PostScript
DOI: 10.2168/LMCS-4(1:2)2008
Hit Counts: 3634 |
 Creative Commons | |
