JAIST Repository: A Formal Framework for Access Rights Analysis

Home| JAIST Home| Library Home

Browse

Communities
& Collections
Titles
Authors
By Date
Theses
Research Report and Technical Memorandum

Sign on to:

My DSpace
authorized users

About DSpace

JAIST Repository >
School of Information Science >
JAIST Research Reports >
Research Report - School of Information Science ： ISSN 0918-7553 >
IS-RR-2012 >

Please use this identifier to cite or link to this item: http://hdl.handle.net/10119/10721

Title:	A Formal Framework for Access Rights Analysis
Authors:	Li, Xin Hua, Vy Le Thanh
Issue Date:	2012-09-11
Publisher:	北陸先端科学技術大学院大学情報科学研究科
Magazine name:	Research report (School of Information Science, Japan Advanced Institute of Science and Technology)
Volume:	IS-RR-2012-001
Start page:	1
End page:	17
Abstract:	A stack-based access control mechanism is to prevent untrusted codes from accessing protected resources in distributed application systems, such as Java-centric web applications and Microsoft .NET framework. Such an access control mechanism is enforced at runtime by stack inspection that inspects methods in the current call stack for granted permissions. Nowadays practiced approaches to generating policy files for an application are still manually done by developers based on domain-specific knowledges and testing, due to overwhelming technical challenges involved and engineering efforts in the automation. This paper presents a formal framework of access rights analysis for Java applications, which includes both policy generation and checking. The analysis of policy generation automatically generates access control policies for the given program that necessarily ensure the program to pass stack inspections. The analysis of policy checking takes as input a policy file and determines whether access control in the concerned domain always succeed or may fail. The answer can either help detect redundant inspection points or refine the given policies. All of our analysis algorithms are novelly designed in the framework of conditional weighted pushdown systems, and are expected to achieve a high level of precision in the literature.
URI:	http://hdl.handle.net/10119/10721
Material Type:	publisher
Appears in Collections:	IS-RR-2012

Files in This Item:

File	Description	Size	Format
IS-RR-2012-001.pdf		187Kb	Adobe PDF	View/Open

Contact : Library Information Section, JAIST (ir-sys[at]ml.jaist.ac.jp)