Predictive access control for distributed computation

Fan Yang; Chris Hankin; Flemming Nielson; Hanne Riis Nielson

doi:10.1016/j.scico.2012.05.008

Predictive access control for distributed computation

Fan Yang, Chris Hankin, Flemming Nielson, Hanne Riis Nielson

Department of Applied Mathematics and Computer Science

Imperial College London

Research output: Contribution to journal › Journal article › Research › peer-review

Abstract

We show how to use aspect-oriented programming to separate security and trust issues from the logical design of mobile, distributed systems. The main challenge is how to enforce various types of security policies, in particular predictive access control policies — policies based on the future behavior of a program. A novel feature of our approach is that we can define policies concerning secondary use of data.

Original language	English
Journal	Science of Computer Programming
Volume	78
Issue number	9
Pages (from-to)	1264-1277
ISSN	0167-6423
DOIs	https://doi.org/10.1016/j.scico.2012.05.008
Publication status	Published - 2013

Keywords

Coordination languages
Security policies
Aspect-oriented programming
Program analysis
Tuple spaces

Access to Document

10.1016/j.scico.2012.05.008

OpenUrl availability

Full text

Cite this

@article{413672082cc04bb49d836129327d8d02,

title = "Predictive access control for distributed computation",

abstract = "We show how to use aspect-oriented programming to separate security and trust issues from the logical design of mobile, distributed systems. The main challenge is how to enforce various types of security policies, in particular predictive access control policies — policies based on the future behavior of a program. A novel feature of our approach is that we can define policies concerning secondary use of data.",

keywords = "Coordination languages, Security policies, Aspect-oriented programming, Program analysis, Tuple spaces",

author = "Fan Yang and Chris Hankin and Flemming Nielson and Nielson, {Hanne Riis}",

year = "2013",

doi = "10.1016/j.scico.2012.05.008",

language = "English",

volume = "78",

pages = "1264--1277",

journal = "Science of Computer Programming",

issn = "0167-6423",

publisher = "Elsevier",

number = "9",

}

TY - JOUR

T1 - Predictive access control for distributed computation

AU - Yang, Fan

AU - Hankin, Chris

AU - Nielson, Flemming

AU - Nielson, Hanne Riis

PY - 2013

Y1 - 2013

N2 - We show how to use aspect-oriented programming to separate security and trust issues from the logical design of mobile, distributed systems. The main challenge is how to enforce various types of security policies, in particular predictive access control policies — policies based on the future behavior of a program. A novel feature of our approach is that we can define policies concerning secondary use of data.

AB - We show how to use aspect-oriented programming to separate security and trust issues from the logical design of mobile, distributed systems. The main challenge is how to enforce various types of security policies, in particular predictive access control policies — policies based on the future behavior of a program. A novel feature of our approach is that we can define policies concerning secondary use of data.

KW - Coordination languages

KW - Security policies

KW - Aspect-oriented programming

KW - Program analysis

KW - Tuple spaces

U2 - 10.1016/j.scico.2012.05.008

DO - 10.1016/j.scico.2012.05.008

M3 - Journal article

VL - 78

SP - 1264

EP - 1277

JO - Science of Computer Programming

JF - Science of Computer Programming

SN - 0167-6423

IS - 9

ER -

Predictive access control for distributed computation

Abstract

Keywords

Access to Document

OpenUrl availability

Fingerprint

Cite this