Secure Access of Products in a Process Environment
Summary :
Process-centered software engineering environments (PSEEs) facilitate controlling software processes. Many issues related to PSEEs such as process evolution support have been addressed. We identify an unsolved issue, which is preventing information leakage when the process is being enacted. We developed a model called PsACL for the prevention. This paper proposes PsACL, which offers the following features: (a) controlling both read and write access of software products, (b) preventing indirect information leakage, (c) managing role associations, (d) managing role hierarchies, (e) enforcing static and simple dynamic separation-of-duty constraints, (f) allowing declassification of products, and (g) allowing access control information exchange among software processes.
- Publication
- IEICE TRANSACTIONS on Information Vol.E88-D No.2 pp.197-203
- Publication Date
- 2005/02/01
- Publicized
- Online ISSN
- DOI
- 10.1093/ietisy/e88-d.2.197
- Type of Manuscript
- PAPER
- Category
- Software Engineering
Authors
Keyword
Latest Issue
Copyrights notice of machine-translated contents
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Cite this
Copy
Shih-Chien CHOU, Chia-Wei LAI, "Secure Access of Products in a Process Environment" in IEICE TRANSACTIONS on Information,
vol. E88-D, no. 2, pp. 197-203, February 2005, doi: 10.1093/ietisy/e88-d.2.197.
Abstract: Process-centered software engineering environments (PSEEs) facilitate controlling software processes. Many issues related to PSEEs such as process evolution support have been addressed. We identify an unsolved issue, which is preventing information leakage when the process is being enacted. We developed a model called PsACL for the prevention. This paper proposes PsACL, which offers the following features: (a) controlling both read and write access of software products, (b) preventing indirect information leakage, (c) managing role associations, (d) managing role hierarchies, (e) enforcing static and simple dynamic separation-of-duty constraints, (f) allowing declassification of products, and (g) allowing access control information exchange among software processes.
URL: https://globals.ieice.org/en_transactions/information/10.1093/ietisy/e88-d.2.197/_p
Copy
@ARTICLE{e88-d_2_197,
author={Shih-Chien CHOU, Chia-Wei LAI, },
journal={IEICE TRANSACTIONS on Information},
title={Secure Access of Products in a Process Environment},
year={2005},
volume={E88-D},
number={2},
pages={197-203},
abstract={Process-centered software engineering environments (PSEEs) facilitate controlling software processes. Many issues related to PSEEs such as process evolution support have been addressed. We identify an unsolved issue, which is preventing information leakage when the process is being enacted. We developed a model called PsACL for the prevention. This paper proposes PsACL, which offers the following features: (a) controlling both read and write access of software products, (b) preventing indirect information leakage, (c) managing role associations, (d) managing role hierarchies, (e) enforcing static and simple dynamic separation-of-duty constraints, (f) allowing declassification of products, and (g) allowing access control information exchange among software processes.},
keywords={},
doi={10.1093/ietisy/e88-d.2.197},
ISSN={},
month={February},}
Copy
TY - JOUR
TI - Secure Access of Products in a Process Environment
T2 - IEICE TRANSACTIONS on Information
SP - 197
EP - 203
AU - Shih-Chien CHOU
AU - Chia-Wei LAI
PY - 2005
DO - 10.1093/ietisy/e88-d.2.197
JO - IEICE TRANSACTIONS on Information
SN -
VL - E88-D
IS - 2
JA - IEICE TRANSACTIONS on Information
Y1 - February 2005
AB - Process-centered software engineering environments (PSEEs) facilitate controlling software processes. Many issues related to PSEEs such as process evolution support have been addressed. We identify an unsolved issue, which is preventing information leakage when the process is being enacted. We developed a model called PsACL for the prevention. This paper proposes PsACL, which offers the following features: (a) controlling both read and write access of software products, (b) preventing indirect information leakage, (c) managing role associations, (d) managing role hierarchies, (e) enforcing static and simple dynamic separation-of-duty constraints, (f) allowing declassification of products, and (g) allowing access control information exchange among software processes.
ER -
FlyerIEICE has prepared a flyer regarding multilingual services. Please use the one in your native language.
English
