Zás – Aspect-Oriented Authorization Services (first take)

Detalhes bibliográficos
Autor(a) principal: Zenida, Paulo
Data de Publicação: 2006
Outros Autores: Sequeira, Manuel Menezes de, Henriques, Diogo, Serrão, Carlos
Tipo de documento: Relatório
Idioma: eng
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10071/163
Resumo: This paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.
id RCAP_60cff852f939ecb653f007c7dffe886d
oai_identifier_str oai:repositorio.iscte-iul.pt:10071/163
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling Zás – Aspect-Oriented Authorization Services (first take)JAASRBACauthorizationJavaAspectJAOPZásThis paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.2006-09-26T11:47:45Z2006-01-01T00:00:00Z2006info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/reportapplication/pdfhttp://hdl.handle.net/10071/163engZenida, PauloSequeira, Manuel Menezes deHenriques, DiogoSerrão, Carlosinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-09T17:50:17Zoai:repositorio.iscte-iul.pt:10071/163Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T22:24:46.155017Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv Zás – Aspect-Oriented Authorization Services (first take)
title Zás – Aspect-Oriented Authorization Services (first take)
spellingShingle Zás – Aspect-Oriented Authorization Services (first take)
Zenida, Paulo
JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
title_short Zás – Aspect-Oriented Authorization Services (first take)
title_full Zás – Aspect-Oriented Authorization Services (first take)
title_fullStr Zás – Aspect-Oriented Authorization Services (first take)
title_full_unstemmed Zás – Aspect-Oriented Authorization Services (first take)
title_sort Zás – Aspect-Oriented Authorization Services (first take)
author Zenida, Paulo
author_facet Zenida, Paulo
Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
author_role author
author2 Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
author2_role author
author
author
dc.contributor.author.fl_str_mv Zenida, Paulo
Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
dc.subject.por.fl_str_mv JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
topic JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
description This paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.
publishDate 2006
dc.date.none.fl_str_mv 2006-09-26T11:47:45Z
2006-01-01T00:00:00Z
2006
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/report
format report
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10071/163
url http://hdl.handle.net/10071/163
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1799134810392756224

Registros relacionados