Abstract | ||
---|---|---|
Today, security is considered to be an important aspect of multi-tier application development. Thoroughly researched concepts for access control exist and have been proven in mainframe computing. However, they are often not used in today's development of multi-tier applications. One reason may be the lack of appropriate reusable components that support application developers that frequently have to re-invent the wheel when it comes to access controls. The goal of this paper is to promote awareness of security issues when developing applications and to illustrate a suitable approach for that. Our framework called GAMMA (Generic Authorization Mechanisms for Multi-Tier Applications) offers several authentication, access control, and auditing mechanisms. Access control models can be combined or used simultaneously in order to provide application-specific and highly customizable mechanisms. Moreover, due to its component-based structure, new security models and additional approaches for authentication or auditing can easily be added. |
Year | DOI | Venue |
---|---|---|
2002 | 10.1109/CSAC.2002.1176295 | ACSAC |
Keywords | Field | DocType |
authorisation,security of data,software reusability,GAMMA,access control,auditing,authentication,multi-tier application development,security,security issues,security models | Data security,Authentication,Audit,Computer security,Cryptography,Computer science,Authorization,Access control,Application software,Computer security model | Conference |
ISSN | ISBN | Citations |
1063-9527 | 0-7695-1828-1 | 3 |
PageRank | References | Authors |
0.55 | 4 | 3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Stefan Probst | 1 | 31 | 3.04 |
Wolfgang Essmayr | 2 | 34 | 4.49 |
Edgar Weippl | 3 | 856 | 105.02 |