Abstract
This paper outlines an object model for security authorization framework to be implemented in Smalltalk. The system is based upon POSIX-like access control matrices, but extended to incorporate “role-based” authorization. In certain aspects it is also influenced by a DCE model and by conversations with T.C. Ting on role-based security. The framework is intended to support business applications coded in Smalltalk using relational databases.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
OSF DCE Version 1.0 DCE User’s Guide and Reference, Open Software Foundation, Combridge, MA, 1991
Talvitie J. Object Model for a Security System, Proceedings of the OOPSLA 1993 Conference Workshop on Security in Object-Oriented Systems, Washington, D.C., USA, 1993
Ting, TC. Application Information Security Semantics: A Case of Mental Health Delivery. In: Spooner, D. and Landwehr C. (editors) Database Security, III, Status and Prospects, North-Holland, New York, 1990.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1994 Springer-Verlag Berlin Heidelberg
About this chapter
Cite this chapter
Talvitie, J.A. (1994). An Object-Oriented Application Security Framework. In: Thuraisingham, B., Sandhu, R., Ting, T.C. (eds) Security for Object-Oriented Systems. Workshops in Computing. Springer, London. https://doi.org/10.1007/978-1-4471-3858-7_5
Download citation
DOI: https://doi.org/10.1007/978-1-4471-3858-7_5
Publisher Name: Springer, London
Print ISBN: 978-3-540-19877-2
Online ISBN: 978-1-4471-3858-7
eBook Packages: Springer Book Archive