Zás – Aspect-Oriented Authorization Services (first take)

Bibliographic Details
Main Author: Zenida, Paulo
Publication Date: 2006
Other Authors: Sequeira, Manuel Menezes de, Henriques, Diogo, Serrão, Carlos
Format: Report
Language: eng
Source: Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
Download full: http://hdl.handle.net/10071/163
Summary: This paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.
id RCAP_60cff852f939ecb653f007c7dffe886d
oai_identifier_str oai:repositorio.iscte-iul.pt:10071/163
network_acronym_str RCAP
network_name_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository_id_str https://opendoar.ac.uk/repository/7160
spelling Zás – Aspect-Oriented Authorization Services (first take)JAASRBACauthorizationJavaAspectJAOPZásThis paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.2006-09-26T11:47:45Z2006-01-01T00:00:00Z2006info:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/reportapplication/pdfhttp://hdl.handle.net/10071/163engZenida, PauloSequeira, Manuel Menezes deHenriques, DiogoSerrão, Carlosinfo:eu-repo/semantics/openAccessreponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiainstacron:RCAAP2024-07-07T03:21:57Zoai:repositorio.iscte-iul.pt:10071/163Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireinfo@rcaap.ptopendoar:https://opendoar.ac.uk/repository/71602025-05-28T18:21:51.969877Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologiafalse
dc.title.none.fl_str_mv Zás – Aspect-Oriented Authorization Services (first take)
title Zás – Aspect-Oriented Authorization Services (first take)
spellingShingle Zás – Aspect-Oriented Authorization Services (first take)
Zenida, Paulo
JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
title_short Zás – Aspect-Oriented Authorization Services (first take)
title_full Zás – Aspect-Oriented Authorization Services (first take)
title_fullStr Zás – Aspect-Oriented Authorization Services (first take)
title_full_unstemmed Zás – Aspect-Oriented Authorization Services (first take)
title_sort Zás – Aspect-Oriented Authorization Services (first take)
author Zenida, Paulo
author_facet Zenida, Paulo
Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
author_role author
author2 Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
author2_role author
author
author
dc.contributor.author.fl_str_mv Zenida, Paulo
Sequeira, Manuel Menezes de
Henriques, Diogo
Serrão, Carlos
dc.subject.por.fl_str_mv JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
topic JAAS
RBAC
authorization
Java
AspectJ
AOP
Zás
description This paper proposes Zás, a novel, flexible, and expressive authorization mechanism for Java. Zás has been inspired by Ramnivas Laddad's proposal to modularize Java Authentication and Authorization Services (JAAS) using an Aspect-Oriented Programming (AOP) approach. Zás' aims are to be simultaneously very expressive, reusable, and easy to use and configure. Zás allows authorization services to be non-invasively added to existing code. It also cohabits with a wide range of authentication mechanisms. Zás uses Java 5 annotations to specify permission requirements to access controlled resources. These requirements may be changed directly during execution. They may also be calculated by client supplied permission classes before each access to the corresponding resource. These features, together with several mechanisms for permission propagation, expression of trust relationships, depth of access control, etc., make Zás, we believe, an interesting starting point for further research on the use of AOP for authorization.
publishDate 2006
dc.date.none.fl_str_mv 2006-09-26T11:47:45Z
2006-01-01T00:00:00Z
2006
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/report
format report
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10071/163
url http://hdl.handle.net/10071/163
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.source.none.fl_str_mv reponame:Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
instname:FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron:RCAAP
instname_str FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
instacron_str RCAAP
institution RCAAP
reponame_str Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
collection Repositórios Científicos de Acesso Aberto de Portugal (RCAAP)
repository.name.fl_str_mv Repositórios Científicos de Acesso Aberto de Portugal (RCAAP) - FCCN, serviços digitais da FCT – Fundação para a Ciência e a Tecnologia
repository.mail.fl_str_mv info@rcaap.pt
_version_ 1833597359145091072

Similar Items