{"title":"基于面向方面的代码注入的用于聚合IMS/Web应用服务器的声明式身份验证和授权框架","authors":"Luis López Fernández, Micael Gallego Carrillo","doi":"10.1109/IMSAA.2008.4753912","DOIUrl":null,"url":null,"abstract":"Incorporating security to large Java applications is a tricky and sometimes difficult task, which may increase code complexity, development costs and unmaintainability. For these reasons, some frameworks are emerging which facilitate the inclusion of security processes (i.e. authentication and authorization) in a declarative way through aspect weaving. In this context, ACEGI is the reference framework being used today by thousands of large web applications. However, there is not such a framework when dealing with SIP/IMS development. In this direction, the objective of this paper is to present an extension of ACEGI, which enables developers a seamless use of this powerful framework for creating secured Java applications based on SIP. This approach has a number of advantages including the fact that authorization and authentication processes can be incorporated easily into SIP/IMS applications and that we can use the same security framework for developing convergent SIP/Web secured applications without the need of duplicating the security code.","PeriodicalId":393607,"journal":{"name":"2008 2nd International Conference on Internet Multimedia Services Architecture and Applications","volume":"11 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"A declarative authentication and authorization framework for convergent IMS/Web application servers based on aspect oriented code injection\",\"authors\":\"Luis López Fernández, Micael Gallego Carrillo\",\"doi\":\"10.1109/IMSAA.2008.4753912\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Incorporating security to large Java applications is a tricky and sometimes difficult task, which may increase code complexity, development costs and unmaintainability. For these reasons, some frameworks are emerging which facilitate the inclusion of security processes (i.e. authentication and authorization) in a declarative way through aspect weaving. In this context, ACEGI is the reference framework being used today by thousands of large web applications. However, there is not such a framework when dealing with SIP/IMS development. In this direction, the objective of this paper is to present an extension of ACEGI, which enables developers a seamless use of this powerful framework for creating secured Java applications based on SIP. This approach has a number of advantages including the fact that authorization and authentication processes can be incorporated easily into SIP/IMS applications and that we can use the same security framework for developing convergent SIP/Web secured applications without the need of duplicating the security code.\",\"PeriodicalId\":393607,\"journal\":{\"name\":\"2008 2nd International Conference on Internet Multimedia Services Architecture and Applications\",\"volume\":\"11 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 2nd International Conference on Internet Multimedia Services Architecture and Applications\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/IMSAA.2008.4753912\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 2nd International Conference on Internet Multimedia Services Architecture and Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/IMSAA.2008.4753912","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A declarative authentication and authorization framework for convergent IMS/Web application servers based on aspect oriented code injection
Incorporating security to large Java applications is a tricky and sometimes difficult task, which may increase code complexity, development costs and unmaintainability. For these reasons, some frameworks are emerging which facilitate the inclusion of security processes (i.e. authentication and authorization) in a declarative way through aspect weaving. In this context, ACEGI is the reference framework being used today by thousands of large web applications. However, there is not such a framework when dealing with SIP/IMS development. In this direction, the objective of this paper is to present an extension of ACEGI, which enables developers a seamless use of this powerful framework for creating secured Java applications based on SIP. This approach has a number of advantages including the fact that authorization and authentication processes can be incorporated easily into SIP/IMS applications and that we can use the same security framework for developing convergent SIP/Web secured applications without the need of duplicating the security code.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
