eprintid: 333
rev_number: 11
eprint_status: archive
userid: 32
dir: disk0/00/00/03/33
datestamp: 2011-06-06 15:00:33
lastmod: 2014-01-15 10:30:16
status_changed: 2011-06-06 15:00:33
type: book_section
metadata_visibility: show
item_issues_count: 0
creators_name: De Nicola, Rocco
creators_name: Ferrari, GianLuigi
creators_name: Pugliese, Rosario
creators_id: r.denicola@imtlucca.it
creators_id: 
creators_id: 
title: Programming Access Control: The KLAIM Experience
ispublished: pub
subjects: Q1
divisions: CSA
full_text_status: none
abstract: In the design of programming languages for highly distributed systems where processes can migrate and execute on new hosts, the integration of security mechanisms is a major challenge. In this paper, we report our experience in the design of an experimental programming language, called Klaim, which provides mechanisms to customize access control policies. Klaim security architecture exploits a capability-based type system to provide mechanisms for specifying and enforcing policies that control uses of resources and authorize migration and execution of processes. By means of a few programming examples, we illustrate the flexibility of the Klaim approach to support the specification of control policies and to guarantee their enforcement.

date: 2000
date_type: published
series: Lecture Notes in Computer Science
volume: 1877
publisher: Springer
pagerange: 48-65
id_number: 10.1007/3-540-44618-4_5
refereed: TRUE
isbn: 3-540-67897-2
book_title: CONCUR 2000 — Concurrency Theory
editors_name: Palamidessi, Catuscia
official_url: http://dx.doi.org/10.1007/3-540-44618-4_5
citation:   De Nicola, Rocco and Ferrari, GianLuigi and Pugliese, Rosario  Programming Access Control: The KLAIM Experience.   In:  CONCUR 2000 — Concurrency Theory.   Lecture Notes in Computer Science, 1877 .  Springer, pp. 48-65.  ISBN 3-540-67897-2      (2000)