使用面向方面编程的多层安全性

2010 International Conference on Advances in Recent Technologies in Communication and Computing Pub Date : 2010-10-16 DOI:10.1109/ARTCOM.2010.87

S. Kotrappa, P. Kulkarni

{"title":"使用面向方面编程的多层安全性","authors":"S. Kotrappa, P. Kulkarni","doi":"10.1109/ARTCOM.2010.87","DOIUrl":null,"url":null,"abstract":"Multilevel security (MLS) is the application of a computer system to process information with different sensitivities (i.e., at different security levels), permit simultaneous access by users with different security clearances and needs-to-know, and prevent users from obtaining access to information for which they lack authorization. Multilevel Security (MLS) system is intended to prevent users from declassifying information. Using an object-oriented approach to implementing security in an application results not only with the problem of code scattering and code tangling, but also results in weaker enforcement of security concern. An aspect-oriented approach is advocated as an improvement to the object oriented approach in dealing with the issues of code tangling and scattering. The reason for this weaker enforcement of security could be due to the inherent design of the system or because of a programming error. In this paper, we discuss implementation of case study using Aspect Oriented Programming (AOP) AspectJ BLP access control policy for improved modularity and maintainability of MLS.","PeriodicalId":398854,"journal":{"name":"2010 International Conference on Advances in Recent Technologies in Communication and Computing","volume":"46 36 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-10-16","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"Multilevel Security Using Aspect Oriented Programming AspectJ\",\"authors\":\"S. Kotrappa, P. Kulkarni\",\"doi\":\"10.1109/ARTCOM.2010.87\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Multilevel security (MLS) is the application of a computer system to process information with different sensitivities (i.e., at different security levels), permit simultaneous access by users with different security clearances and needs-to-know, and prevent users from obtaining access to information for which they lack authorization. Multilevel Security (MLS) system is intended to prevent users from declassifying information. Using an object-oriented approach to implementing security in an application results not only with the problem of code scattering and code tangling, but also results in weaker enforcement of security concern. An aspect-oriented approach is advocated as an improvement to the object oriented approach in dealing with the issues of code tangling and scattering. The reason for this weaker enforcement of security could be due to the inherent design of the system or because of a programming error. In this paper, we discuss implementation of case study using Aspect Oriented Programming (AOP) AspectJ BLP access control policy for improved modularity and maintainability of MLS.\",\"PeriodicalId\":398854,\"journal\":{\"name\":\"2010 International Conference on Advances in Recent Technologies in Communication and Computing\",\"volume\":\"46 36 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-10-16\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 International Conference on Advances in Recent Technologies in Communication and Computing\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ARTCOM.2010.87\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 International Conference on Advances in Recent Technologies in Communication and Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ARTCOM.2010.87","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

摘要

多层保安(MLS)是指电脑系统在处理不同敏感程度(即不同保安级别)的资料时，容许不同安全许可及需要了解的用户同时查阅资料，以及防止用户在没有授权的情况下查阅资料。多层安全(MLS)系统旨在防止用户解密信息。使用面向对象的方法在应用程序中实现安全性不仅会导致代码分散和代码纠缠的问题，而且还会导致安全性关注的强制执行较弱。在处理代码纠缠和分散的问题时，提倡使用面向方面的方法作为面向对象方法的改进。这种较弱的安全性强制执行的原因可能是由于系统的固有设计或由于编程错误。本文讨论了应用面向方面编程(Aspect Oriented Programming, AOP)的AspectJ BLP访问控制策略实现实例研究，以提高MLS的模块化和可维护性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Multilevel Security Using Aspect Oriented Programming AspectJ

Multilevel security (MLS) is the application of a computer system to process information with different sensitivities (i.e., at different security levels), permit simultaneous access by users with different security clearances and needs-to-know, and prevent users from obtaining access to information for which they lack authorization. Multilevel Security (MLS) system is intended to prevent users from declassifying information. Using an object-oriented approach to implementing security in an application results not only with the problem of code scattering and code tangling, but also results in weaker enforcement of security concern. An aspect-oriented approach is advocated as an improvement to the object oriented approach in dealing with the issues of code tangling and scattering. The reason for this weaker enforcement of security could be due to the inherent design of the system or because of a programming error. In this paper, we discuss implementation of case study using Aspect Oriented Programming (AOP) AspectJ BLP access control policy for improved modularity and maintainability of MLS.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 International Conference on Advances in Recent Technologies in Communication and Computing

自引率

0.00%

发文量