ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Support for discretionary role based access control in ACL-oriented operating systems
Full text PdfPdf (1.11 MB)
Source ACM Workshop on Role Based Access Control archive
Proceedings of the second ACM workshop on Role-based access control table of contents
Fairfax, Virginia, United States
Pages: 83 - 94  
Year of Publication: 1997
ISBN:0-89791-985-8
Authors
Christian Friberg  Department of Computer Science, University of Kiel, Germany
Achim Held  Department of Computer Science, University of Kiel, Germany
Sponsors
DC Chapter :
NIST : National Institue of Standards & Technology
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 33,   Citation Count: 3
Additional Information:

references   cited by   index terms   collaborative colleagues   peer to peer  

Tools and Actions: Review this Article  
Save this Article to a Binder    Display Formats: BibTex  EndNote ACM Ref   
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/266741.266763
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
M. Abrams, L. LaPadula, I. Olson: Building Generalized A(:cess C, ontrol on UNIX, USENIX Second 5'ecuritg Workshop Program, 1.990, 65-70.
 
2
'1'he Active Group: ActiveX, http ://www. act ivex. org/
 
3
APOLLO computer Inc. the DOMAIN System, Administrator's Guide, ,7 ed., 1983.
 
4
Maurice J. Bach, The design of the UNIX operating system, Prentice-Hall, Inc., Upper Saddle River, NJ, 1986
 
5
J. Barkley, A. Cincotta, D. Ferraiolo, S. Gavrilla, D. l,//uhtl: Role Based Ac(:ess Control for the World Wide Web, http ://hissa. ncsl. nist. gov/rbac/rbacweb/ paper, ps, 1997
 
6
N. Borenstein, N. Freed: MIME (Multipurpose lnternet Mail Extensions), RF(I: 1,521 and RFC 1522.
 
7
Eike Born , Helmut Stiegler, Discretionary access control by means of usage conditions, Computers and Security, v.13 n.5, p.437-450, July 1994  [doi>10.1016/0167-4048(94)90037-X ]
 
8
R. Card: l)esign and Impletnentation of the Se(:oiid Extended Filesystem, Proceedings of the b'ilst Dutch Inte~w, ational Sgmposium on L~nua:, l~)95.
 
9
D. Dean , Felten , Wallach, Java Security: From HotJava to Netscape and Beyond, Proceedings of the 1996 IEEE Symposium on Security and Privacy, p.190, May 06-08, 1996
 
10
D. Downs, J. Rub, K. Kung, C. jordan: Issues in Discretionary Access Control, Proc. of the IEEE Symposium on Security and Privacy, 1985, 208- 21. 8.
 
11
Enterprise {ntegration "{~chnologies: Secure HTTP, http://www, eit. corn/creations/ s-http/s-http, html.
 
12
D. Ferraiolo, R., Kuhn: Role-Based Access Controis, Proc. of the 15th National Computer 5'ecuritg Confercnce, Vol II, 1992, 554-563.
13
David F. Ferraiolo , D. Richard Kuhn, Future directions in role-based access control, Proceedings of the first ACM Workshop on Role-based access control, p.8-es, November 30-December 02, 1995, Gaithersburg, Maryland, United States  [doi>10.1145/270152.270165]
 
14
Simson Garfinkel , Gene Spafford, Practical Unix and Internet security (2nd ed.), O'Reilly & Associates, Inc., Sebastopol, CA, 1996
 
15
J. Gosling, H. M(:Gilton: The Java Lang,lage Environment: A White Paper, 1995, http://java, sun. com/whitePaper/ j ava-whi t epaper- i. html
16
Trent Jaeger , Atul Prakash, Support for the file system security requirements of computational E-mail systems, Proceedings of the 2nd ACM Conference on Computer and communications security, p.1-9, November 1994, Fairfax, Virginia, United States  [doi>10.1145/191177.191179]
17
Trent Jaeger , Atul Prakash, Requirements of role-based access control for collaborative systems, Proceedings of the first ACM Workshop on Role-based access control, p.16-es, November 30-December 02, 1995, Gaithersburg, Maryland, United States  [doi>10.1145/270152.270183]
 
18
T. Jaeger, A. Rubin, and A. l)rakash: Building Systems That Flexibly (',ontrol Downloaded Executable (~ontent, .P'lvc'. of the 6th U,.5'ENIX ,Security ,b'gm.posium, 1996, 131-148.
 
19
P. Karger: {,imiting the Dalnage Potential of Discretionary Trojan 11orses, Proc. of the' IEEE ,5'gmposiunl. on ,b'ecurilg and Pri'~aclq, 1987, 32- 37.
 
20
N. l,ai, T. Gray" Strengt.hening l)iscretionary Access Controls to Inhibit Tro.jall Horses a.n(l Computer Viruses, ~7,q'ENIX Co'n}~.~r(:.;ncc Proceeding, Summer 1.988,275-28(5.
21
Butler W. Lampson, Protection, ACM SIGOPS Operating Systems Review, v.8 n.1, p.18-24, January 1974  [doi>10.1145/775265.775268]
 
22
J. I,evy, J. Ousterhout. Safe Tcl: A "i%olbox for Constructing Electronic Meeting Places. The First USENIX Workshop on Electronic (;'ommerce, 1995.
 
23
Netscape Communications Corporation: Secure Socket Layers, http : //home. net s cape. com/as s ist / security/ss i/index, html.
 
24
Netscape (~:ommunications Corporation: aavaScript Authoring Guide, http : //home. net scape, com/eng/mozilla/ Gol d/handbook/3 avas cr ipt/index, html
 
25
P. Rival, The Linux ACL Project, http://www, dwc. edu/users/frival/acl/
 
26
J. Saltzer, M. Schroeder: The Protection of Information in Computer Systenls, Proceedi~.qs of the IEEE, 36, No. 9, 1975, 11278-13()8.
 
27
Ravi S. Sandhu, The Typed Access Matrix Model, Proceedings of the 1992 IEEE Symposium on Security and Privacy, p.122, May 04-06, 1992
 
28
R. Sandhu, G. Suri: Implementation Considerations {br the Typed Access Matrix Model in a l)istributed Eilvirorlment, P,l"oc. of the 15th NIST-N(7,S'C Nat,tonal Computer Security Conference, 1992, 221-235.
 
29
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845 ]
 
30
B. Schneier: Applied Crgptographg, Wiley&Sons, 1994.
 
31
Still Microsystems: NFS: Network File System Protocol specification, RFC 1.094.
 
32
Keilnet.h M. Walker, Daniel F. Sterne, M. Lee Badger, Michael .I. Petkac, David L. Shermann, t{a.ren A. Oostendorp: Confining Root, Programs with Domain and Type Enforcement (DTE), Proceedings of the b'iz'th USENIX UNIX 5'e.curitg Sylnpo,sium, 1996.

CITED BY  3
Jason Crampton , George Loizou, Administrative scope: A foundation for role-based administrative models, ACM Transactions on Information and System Security (TISSEC), v.6 n.2, p.201-231, May 2003
 
Trent Jaeger , Jochen Liedtke , Nayeem Islam, Operating system protection for fine-grained programs, Proceedings of the 7th conference on USENIX Security Symposium, 1998, p.11-11, January 26-29, 1998, San Antonio, Texas
William Enck , Sandra Rueda , Joshua Schiffman , Yogesh Sreenivasan , Luke St. Clair , Trent Jaeger , Patrick McDaniel, Protecting users from "themselves", Proceedings of the 2007 ACM workshop on Computer security architecture, November 02-02, 2007, Fairfax, Virginia, USA

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.0 General

          Nouns: UNIX

  G. Mathematics of Computing
  G.2 DISCRETE MATHEMATICS
      G.2.2 Graph Theory
          Subjects: Trees

  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.4 Systems and Software

          Nouns: World Wide Web (WWW)


General Terms:
Algorithms, Human Factors, Languages, Security

Collaborative Colleagues:
Christian Friberg: colleagues
Achim Held: colleagues

Peer to Peer - Readers of this Article have also read:

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2008 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player