Fine-grained Service Side Access Control Model for Web Application

被引:0
|
作者
Liang, Zhijun [1 ]
Zhang, Hua
Zhao, Zhonghua
机构
[1] Beijing Univ Posts & Telecommun, State Key Lab Networking & Switching Technol, Beijing 100876, Peoples R China
来源
PROCEEDINGS OF THE FIRST INTERNATIONAL CONFERENCE ON INFORMATION SCIENCES, MACHINERY, MATERIALS AND ENERGY (ICISMME 2015) | 2015年 / 126卷
关键词
access control; extension; privilege management;
D O I
暂无
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
In the paper of SCUTA, to the more and more complicated network environment and the w3c's Same-Origin Policy's vulnerability, the author designs a new web access control model. It eases the difficulty of web policy's configuration and reduces the potential vulnerabilities. However, because of the inflexible model configuration design, it has low system flexibility. What's more, it also has many vulnerability. On the basis of it, we design a new model in detail, which was implemented and checked with Apache, PHP and Mysql. Relative to SCUTA model, this access control model can make the developer implements policy configuration easier, more efficient and more flexible avoiding the original vulnerabilities, which provides that this model can be more secure, more effective and faster.
引用
收藏
页码:1 / 6
页数:6
相关论文
共 50 条
  • [1] A fine-grained access control model for Web services
    Bertino, E
    Squicciarini, AC
    Mevi, D
    [J]. 2004 IEEE INTERNATIONAL CONFERENCE ON SERVICES COMPUTING, PROCEEDINGS, 2004, : 33 - 40
  • [2] Design and Application of Fine-Grained Access Control Model
    Xie, Xuelian
    Yang, Haibo
    Li, Lanyou
    [J]. NETWORK COMPUTING AND INFORMATION SECURITY, 2012, 345 : 23 - +
  • [3] Fine-grained Access Control to Web Databases
    Roichman, Alex
    Gudes, Ehud
    [J]. SACMAT'07: PROCEEDINGS OF THE 12TH ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES, 2007, : 31 - 40
  • [4] A Fine-Grained Image Access Control Model
    Al Bouna, Bechara
    Chbeir, Richard
    Gabillon, Alban
    Capolsini, Patrick
    [J]. 8TH INTERNATIONAL CONFERENCE ON SIGNAL IMAGE TECHNOLOGY & INTERNET BASED SYSTEMS (SITIS 2012), 2012, : 603 - 612
  • [5] POSTER: DIEGO: A Fine-Grained Access Control for Web Browsers
    Javed, Ashar
    [J]. PROCEEDINGS OF THE 18TH ACM CONFERENCE ON COMPUTER & COMMUNICATIONS SECURITY (CCS 11), 2011, : 789 - 791
  • [6] A fine-grained access control model for relational databases
    Shi, Jie
    Zhu, Hong
    [J]. JOURNAL OF ZHEJIANG UNIVERSITY-SCIENCE C-COMPUTERS & ELECTRONICS, 2010, 11 (08): : 575 - 586
  • [7] A Fine-Grained Access Control Model for Smart Grid
    Wang, Chen
    Ai, Hong
    Wu, Lie
    Yang, Yun
    [J]. APPLIED SCIENCE, MATERIALS SCIENCE AND INFORMATION TECHNOLOGIES IN INDUSTRY, 2014, 513-517 : 772 - 776
  • [8] Fine-grained Access Control Model Based on RBAC
    Gao, Lei
    Pan, Shulin
    [J]. AUTOMATION EQUIPMENT AND SYSTEMS, PTS 1-4, 2012, 468-471 : 1667 - +
  • [9] A fine-grained access control model for relational databases
    Jie SHI
    [J]. Frontiers of Information Technology & Electronic Engineering, 2010, (08) : 575 - 586
  • [10] A fine-grained access control model for relational databases
    Jie Shi
    Hong Zhu
    [J]. Journal of Zhejiang University SCIENCE C, 2010, 11 : 575 - 586
12345