ScienceDirect® Home Skip Main Navigation Links
You have guest access to ScienceDirect. Find out more.
 
Home
Browse
My Settings
Alerts
Help
 Quick Search
 Search tips (Opens new window)
    Clear all fields    
advertisementadvertisement
Journal of Systems and Software
Volume 73, Issue 3, November-December 2004, Pages 425-439
 
Font Size: Decrease Font Size  Increase Font Size
 Abstract - selected
Purchase PDF (345 K)

  E-mail Article   
  Add to my Quick Links   
Bookmark and share in 2collab (opens in new window)
Request permission to reuse this article
  Cited By in Scopus (4)
 
 
 
Related Articles in ScienceDirect
View More Related Articles
 
View Record in Scopus
 
doi:10.1016/j.jss.2003.08.235    How to Cite or Link Using DOI (Opens New Window)
Copyright © 2003 Elsevier Inc. All rights reserved.

Providing flexible access control to an information flow control model

Shih-Chien ChouCorresponding Author Contact Information, E-mail The Corresponding Author

Department of Computer Science and Information Engineering, National Dong Hwa University, 1, Section 2, Da Hsueh Road, Shou, Hualien 974, Taiwan

Received 9 April 2003; 
Revised 23 August 2003; 
accepted 27 August 2003. 
Available online 25 December 2003.

Purchase the full-text article



References and further reading may be available for this article. To view references and further reading you must purchase this article.

Abstract

Protecting privacy within an application is essential. Many information flow control models have been developed for that protection. We developed an information flow control model based on role-based access control (RBAC) for object-oriented systems, which is called OORBAC (object-oriented role-based access control). According to the experiences of using OORBAC, we found that a model allowing every secure information flow and blocking every non-secure flow is too restricted. We propose that the following flexible access control features should be offered: (a) non-secure but harmless information flows should be allowed and (b) secure but harmful information flows should be blocked. According to our survey, no existing model offers the above control. We thus revised OORBAC to offer the control. The revised OORBAC have been implemented and evaluated. This paper presents flexible access control in the revised OORBAC and the evaluation result.

Author Keywords: Information security; Privacy protection; Information flow control

Corresponding Author Contact InformationCorresponding author. Tel.: +886-3863-4024; fax: +886-3863-4010


Journal of Systems and Software
Volume 73, Issue 3, November-December 2004, Pages 425-439
 
Home
Browse
My Settings
Alerts
Help
Elsevier.com (Opens new window)
About ScienceDirect  |  Contact Us  |  Information for Advertisers  |  Terms & Conditions  |  Privacy Policy
Copyright © 2008 Elsevier B.V. All rights reserved. ScienceDirect® is a registered trademark of Elsevier B.V.