Protecting network users in mobile code systems

Shiuhpyng Shieh; Wen Her Yang

doi:10.1016/j.jpdc.2003.09.008

Protecting network users in mobile code systems

Shiuhpyng Shieh^*, Wen Her Yang

^*Corresponding author for this work

Department of Computer Science

Research output: Contribution to journal › Article › peer-review

Abstract

Conventional access control mechanisms are rather insensitive to occurrences of context-dependent illegal accesses. Insensitivity to context-dependent accesses may lead to failure to protect network users and resources. Context-dependent illegal accesses resulting from data and privilege flows in open networks cannot be prevented by either authentication or access control mechanisms since unauthorized access need not be attempted. In this paper we present a protection model which tracks data and privilege flows in mobile code systems. It can uniformly define various types of illegal access patterns and has the advantage of preventing context-dependent illegal accesses such as those caused by inadvertent execution of remote mobile code containing viruses or Trojan Horses. The proposed flow control model is expected to complement the conventional model for access control.

Original language	English
Pages (from-to)	191-200
Number of pages	10
Journal	Journal of Parallel and Distributed Computing
Volume	64
Issue number	2
DOIs	https://doi.org/10.1016/j.jpdc.2003.09.008
State	Published - Feb 2004

Keywords

Access control
Flow control
Internet security
Java
Mobile code
Remote execution
World Wide Web

Access to Document

10.1016/j.jpdc.2003.09.008

Cite this

@article{c586871eb5db41d8938dd628b58ee55b,

title = "Protecting network users in mobile code systems",

abstract = "Conventional access control mechanisms are rather insensitive to occurrences of context-dependent illegal accesses. Insensitivity to context-dependent accesses may lead to failure to protect network users and resources. Context-dependent illegal accesses resulting from data and privilege flows in open networks cannot be prevented by either authentication or access control mechanisms since unauthorized access need not be attempted. In this paper we present a protection model which tracks data and privilege flows in mobile code systems. It can uniformly define various types of illegal access patterns and has the advantage of preventing context-dependent illegal accesses such as those caused by inadvertent execution of remote mobile code containing viruses or Trojan Horses. The proposed flow control model is expected to complement the conventional model for access control.",

keywords = "Access control, Flow control, Internet security, Java, Mobile code, Remote execution, World Wide Web",

author = "Shiuhpyng Shieh and Yang, {Wen Her}",

year = "2004",

month = feb,

doi = "10.1016/j.jpdc.2003.09.008",

language = "English",

volume = "64",

pages = "191--200",

journal = "Journal of Parallel and Distributed Computing",

issn = "0743-7315",

publisher = "Academic Press Inc.",

number = "2",

}

TY - JOUR

T1 - Protecting network users in mobile code systems

AU - Shieh, Shiuhpyng

AU - Yang, Wen Her

PY - 2004/2

Y1 - 2004/2

N2 - Conventional access control mechanisms are rather insensitive to occurrences of context-dependent illegal accesses. Insensitivity to context-dependent accesses may lead to failure to protect network users and resources. Context-dependent illegal accesses resulting from data and privilege flows in open networks cannot be prevented by either authentication or access control mechanisms since unauthorized access need not be attempted. In this paper we present a protection model which tracks data and privilege flows in mobile code systems. It can uniformly define various types of illegal access patterns and has the advantage of preventing context-dependent illegal accesses such as those caused by inadvertent execution of remote mobile code containing viruses or Trojan Horses. The proposed flow control model is expected to complement the conventional model for access control.

AB - Conventional access control mechanisms are rather insensitive to occurrences of context-dependent illegal accesses. Insensitivity to context-dependent accesses may lead to failure to protect network users and resources. Context-dependent illegal accesses resulting from data and privilege flows in open networks cannot be prevented by either authentication or access control mechanisms since unauthorized access need not be attempted. In this paper we present a protection model which tracks data and privilege flows in mobile code systems. It can uniformly define various types of illegal access patterns and has the advantage of preventing context-dependent illegal accesses such as those caused by inadvertent execution of remote mobile code containing viruses or Trojan Horses. The proposed flow control model is expected to complement the conventional model for access control.

KW - Access control

KW - Flow control

KW - Internet security

KW - Java

KW - Mobile code

KW - Remote execution

KW - World Wide Web

UR - http://www.scopus.com/inward/record.url?scp=2942620517&partnerID=8YFLogxK

U2 - 10.1016/j.jpdc.2003.09.008

DO - 10.1016/j.jpdc.2003.09.008

M3 - Article

AN - SCOPUS:2942620517

SN - 0743-7315

VL - 64

SP - 191

EP - 200

JO - Journal of Parallel and Distributed Computing

JF - Journal of Parallel and Distributed Computing

IS - 2

ER -

Protecting network users in mobile code systems

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this