Fine-grained Service Side Access Control Model for Web Application

被引:0
|
作者
Liang, Zhijun [1 ]
Zhang, Hua
Zhao, Zhonghua
机构
[1] Beijing Univ Posts & Telecommun, State Key Lab Networking & Switching Technol, Beijing 100876, Peoples R China
来源
PROCEEDINGS OF THE FIRST INTERNATIONAL CONFERENCE ON INFORMATION SCIENCES, MACHINERY, MATERIALS AND ENERGY (ICISMME 2015) | 2015年 / 126卷
关键词
access control; extension; privilege management;
D O I
暂无
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
In the paper of SCUTA, to the more and more complicated network environment and the w3c's Same-Origin Policy's vulnerability, the author designs a new web access control model. It eases the difficulty of web policy's configuration and reduces the potential vulnerabilities. However, because of the inflexible model configuration design, it has low system flexibility. What's more, it also has many vulnerability. On the basis of it, we design a new model in detail, which was implemented and checked with Apache, PHP and Mysql. Relative to SCUTA model, this access control model can make the developer implements policy configuration easier, more efficient and more flexible avoiding the original vulnerabilities, which provides that this model can be more secure, more effective and faster.
引用
收藏
页码:1 / 6
页数:6
相关论文
共 50 条
  • [21] An approach for fine-grained Web service performance monitoring
    Schaefer, Jan
    [J]. DISTRIBUTED APPLICATIONS AND INTEROPERABLE SYSTEMS, PROCEEDINGS, 2006, 4025 : 169 - 180
  • [22] Fine-grained access control of PDM and CAPP
    Feng, SH
    Jiang, ZL
    [J]. ADVANCES IN MATERIALS MANUFACTURING SCIENCE AND TECHNOLOGY, 2004, 471-472 : 573 - 576
  • [23] Fine-grained access control for cloud computing
    Ye, Xinfeng
    Khoussainov, Bakh
    [J]. INTERNATIONAL JOURNAL OF GRID AND UTILITY COMPUTING, 2013, 4 (2-3) : 160 - 168
  • [24] Toward a flexible and fine-grained access control framework for infrastructure as a service clouds
    Li, Bo
    Li, Jianxin
    Liu, Lu
    Zhou, Chao
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2016, 9 (15) : 2730 - 2743
  • [25] An efficient fine-grained data access control system with a bounded service number
    Liu, Xin
    Wang, Hao
    Zhang, Bo
    Zhang, Bin
    [J]. INFORMATION SCIENCES, 2022, 584 : 536 - 563
  • [26] A Unified Network Security and Fine-Grained Database Access Control Model
    Pan, Leon
    [J]. PROCEEDINGS OF THE SECOND INTERNATIONAL SYMPOSIUM ON ELECTRONIC COMMERCE AND SECURITY, VOL I, 2009, : 265 - 269
  • [27] A Fine-grained Multiparty Access Control Model for Photo Sharing in OSNs
    Lee, Chao
    Wang, Wei
    Guo, Yunchuan
    [J]. 2016 IEEE FIRST INTERNATIONAL CONFERENCE ON DATA SCIENCE IN CYBERSPACE (DSC 2016), 2016, : 440 - 445
  • [28] Towards a fine-grained access control model and mechanisms for semantic databases
    Franzoni, Stefano
    Mazzoleni, Pietro
    Valtolina, Stefano
    Mazzoleni, Pietro
    Bertino, Elisa
    [J]. 2007 IEEE INTERNATIONAL CONFERENCE ON WEB SERVICES, PROCEEDINGS, 2007, : 993 - +
  • [29] A Fine-Grained Access Control Model with Secure Label on Data Resource
    Gao, Lijie
    Liu, Lianzhong
    Jin, Ze
    Han, Chunyan
    [J]. 2013 3RD INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND NETWORK TECHNOLOGY (ICCSNT), 2013, : 14 - 18
  • [30] Fine-grained semantic web service discovery based on service operation
    Qin, Mingwen
    Wen, Junhao
    Yi, Juan
    [J]. Journal of Information and Computational Science, 2011, 8 (09): : 1577 - 1592
12345