We introduce a capability-based accesscontrol model integrated into a linguistic formalism for modeling network aware systems and applications. Our access control model enables specification and dynamic modification of policies for controlling process activities (mobility of code and access to resources). We exploit a combination of static and dynamic checking and of in-lined reference monitoring to guarantee absence of run-time errors due to lack of capabilities. We illustrate the usefulness of our framework by using it for implementing a simplified but realistic scenario. Finally, we show how the model can be easily tailored for dealing with different forms of capability acquisition and loss, thus enabling different possible variations of access control policies. (C) 2008 Elsevier Inc. All rights reserved.

Dynamic management of capabilities in a network aware coordination language / Gorla, Daniele; Rosario, Pugliese. - In: JOURNAL OF LOGIC AND ALGEBRAIC PROGRAMMING. - ISSN 1567-8326. - STAMPA. - 78:8(2009), pp. 665-689. [10.1016/j.jlap.2008.12.001]

Dynamic management of capabilities in a network aware coordination language

GORLA, DANIELE;
2009

Abstract

We introduce a capability-based accesscontrol model integrated into a linguistic formalism for modeling network aware systems and applications. Our access control model enables specification and dynamic modification of policies for controlling process activities (mobility of code and access to resources). We exploit a combination of static and dynamic checking and of in-lined reference monitoring to guarantee absence of run-time errors due to lack of capabilities. We illustrate the usefulness of our framework by using it for implementing a simplified but realistic scenario. Finally, we show how the model can be easily tailored for dealing with different forms of capability acquisition and loss, thus enabling different possible variations of access control policies. (C) 2008 Elsevier Inc. All rights reserved.
2009
capability-based access control; mobility control; process distribution and mobility; resource usage
01 Pubblicazione su rivista::01a Articolo in rivista
Dynamic management of capabilities in a network aware coordination language / Gorla, Daniele; Rosario, Pugliese. - In: JOURNAL OF LOGIC AND ALGEBRAIC PROGRAMMING. - ISSN 1567-8326. - STAMPA. - 78:8(2009), pp. 665-689. [10.1016/j.jlap.2008.12.001]
File allegati a questo prodotto
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11573/144952
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 15
  • ???jsp.display-item.citation.isi??? 9
social impact