Extensible Access Control with Authorization Contracts

DSpace/Manakin Repository

Extensible Access Control with Authorization Contracts

Citable link to this page


Title: Extensible Access Control with Authorization Contracts
Author: Scott Moore, Christos; Chong, Stephen N; Moore, Scott David; Dimoulas, Christos; Findler, Robert Bruce; Flatt, Matthew; Chong, Stephen N

Note: Order does not necessarily reflect citation order of authors.

Citation: Moore, Scott, Christos Dimoulas, Robert Bruce Findler, Matthew Flatt, and Stephen Chong. 2016. Extensible Access Control with Authorization Contracts. Harvard Computer Science Group Technical Report TR-03-16.
Full Text & Related Files:
Abstract: Existing programming language access control frameworks do not meet the needs of all software components.We propose an expressive framework for implementing access control monitors for components. The basis of the framework is a novel concept: the authority environment. An authority environment associates rights with an execution context. The building blocks of access control monitors in our framework are authorization contracts: software contracts that manage authority environments. We demonstrate the expressiveness of our framework by implementing a diverse set of existing access control mechanisms and writing custom access control monitors for three realistic case studies.
Terms of Use: This article is made available under the terms and conditions applicable to Other Posted Material, as set forth at http://nrs.harvard.edu/urn-3:HUL.InstRepos:dash.current.terms-of-use#LAA
Citable link to this page: http://nrs.harvard.edu/urn-3:HUL.InstRepos:28552973
Downloads of this work:

Show full Dublin Core record

This item appears in the following Collection(s)


Search DASH

Advanced Search