Hidden capabilities

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Hidden capabilities: towards a flexible protection utility for the internet

Full text

Pdf (375 KB)

Source

ACM SIGOPS European Workshop archive
Proceedings of the 7th workshop on ACM SIGOPS European workshop: Systems support for worldwide applications table of contents

Connemara, Ireland

SESSION: Position papers table of contents

Pages: 219 - 223

Year of Publication: 1996

Authors

D. Hagimont	Imag-Inria, Inria Rhône-Alpes, 655, F-38330 Montbonnot Saint Martin
J. Mossière	Imag-Inria, Inria Rhône-Alpes, 655, F-38330 Montbonnot Saint Martin
Cliff W. Hemming, Jr.	Imag-Inria, Inria Rhône-Alpes, 655, F-38330 Montbonnot Saint Martin

Sponsors

SIGOPS: ACM Special Interest Group on Operating Systems
ACM: Association for Computing Machinery

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 0, Downloads (12 Months): 3, Citation Count: 0

Additional Information:

abstract references collaborative colleagues peer to peer

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/504450.504489 What is a DOI?

ABSTRACT

This paper presents a protection model based on software capabilities. Its main advantage is that capabilities are hidden from the application programmer, allowing the protection policy of an application to be defined independently from the application code. This is very interesting for protecting an already developed application.Our claim is that this protection model is well suited for a wide range of environments, from clusters of tightly coupled servers to large loosely coupled servers on the Internet. It is particularly interesting when applications are built by assembling many existing pieces of code into a single application.We argue our claim by describing our model and its integration in three different environments: a DSM (Distributed Shared Memory )system [Pérez 95], CORBA (Common Request Broker Architecture) [OMG 91] and the Java programming environment [Java 95].The rest of the paper is structured as follows. In section 2, we provide an overview of our protection model based on hidden software capabilities. Section 3 discusses the integration of this model in a DSM system, an ORB and the Java environment. We conclude in section 4.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	Cabrera 92	U-F. Cabrera, A. W. Luniewski, J. W. Stamos. Fine-Grained Access Control in a Transactional Object-Oriented System, Computing Systems, 5(3), Summer 1992.
	Chase 94	Jeffrey S. Chase , Henry M. Levy , Michael J. Feeley , Edward D. Lazowska, Sharing and protection in a single-address-space operating system, ACM Transactions on Computer Systems (TOCS), v.12 n.4, p.271-307, Nov. 1994 [doi>10.1145/195792.195795]
	Hagimont 94	Daniel Hagimont, Protection in the Guide Object-Oriented Distributed System, Proceedings of the 8th European Conference on Object-Oriented Programming, p.280-298, July 04-08, 1994
	Hagimont 96	J. Mossiere , F. Saunier, Hidden software capabilities, Proceedings of the 16th International Conference on Distributed Computing Systems (ICDCS '96), p.282, May 27-30, 1996
	Iona 94	Iona Technologies. Orbix distributed object technology - programmer's guide, Version 1.2, February 1994.
	Java 95	The Java Language Environment: A White Paper, http://java.sun.com/whitePaper/java-whitepaper- 1.html, Sun Microsystems Inc., 1995.
	Kowalski 90	O. C. Kowalski, H. Hairtig. Protection in the BirliX Operating System, Proc. of the lOth International Conference on Distributed Computing Systems, pp. 160-166, May 1990.
	Levy 84	Henry M. Levy, Capability-Based Computer Systems, Butterworth-Heinemann, Newton, MA, 1984
	OMG 91	OMG. The Common Object Request Broker: Architecture and Specification, OMG Document Number 91.12.1, Revision 1.1, December 1991.
	Organick 72	Elliott I. Organick, The Multics System: An Examination of Its Structure, The MIT Press, 1972
	Pérez 95	E. P6rez-Cort6s, P. Dechamboux, J. Hart, "Generic Support for Consistency in Arias", 5th International Workshop on Hot Topics in Operating Systems (HOTOS-V), pp. 113-118, Rosario, Washington, May 1995.
	Hagimont 96	D. Hagimont, S. Krakowiak, J. Mossi~re and X. Rousset de Pina. A Selective Protection Scheme for the Java Environment, Technical Report, RT-Sirac-96-12, http://sirac.inrialpes.fr
	Tanenbaum 86	A. S. Tanenbaum, S. J. Mullender, R. Van Renesse. Using Sparse Capabilities in a Distributed Operating System, Proc. of the Sixth IEEE International Conference on Distributed Computing Systems, pp. 558-563, 1986.
	Wulf 74	W. Wulf , E. Cohen , W. Corwin , A. Jones , R. Levin , C. Pierson , F. Pollack, HYDRA: the kernel of a multiprocessor operating system, Communications of the ACM, v.17 n.6, p.337-345, June 1974 [doi>10.1145/355616.364017]

Collaborative Colleagues:

D. Hagimont: colleagues

J. Mossière: colleagues

Cliff W. Hemming, Jr.: colleagues

Peer to Peer - Readers of this Article have also read:

Data structures for quadtree approximation and compression Communications of the ACM 28, 9
Hanan Samet
A hierarchical single-key-lock access control using the Chinese remainder theorem Proceedings of the 1992 ACM/SIGAPP Symposium on Applied computing
Kim S. Lee , Huizhu Lu , D. D. Fisher
The GemStone object database management system Communications of the ACM 34, 10
Paul Butterworth , Allen Otis , Jacob Stein
Putting innovation to work: adoption strategies for multimedia communication systems Communications of the ACM 34, 12
Ellen Francik , Susan Ehrlich Rudman , Donna Cooper , Stephen Levine
An intelligent component database for behavioral synthesis Proceedings of the 27th ACM/IEEE Design Automation Conference on
Gwo-Dong Chen , Daniel D. Gajski

Adobe Acrobat

QuickTime

Windows Media Player

Real Player