Access Control

file

You Can't Touch This

Submitted by Katie Dey on Mon, 05/13/2013 - 3:16pm. Contributor:

ABSTRACT

JavaScript provides access to all resources via object properties. An access control mechanism that protects confidential information for such a language has to gauge traversals of the object graph. We propose a domain specific language to specify sets of objects, assign read and write permissions to them, and enforce these permissions in limited scopes of a program. To obtain complete interposition, we build the enforcement mechanism into the scripting engine.

file

Science of Security: Historical Perspective

Submitted by Katie Dey on Mon, 12/03/2012 - 11:11am. Contributor:

Fred B. Schneider is Samuel B. Eckert Professor of Computer Science at Cornell University.  He joined Cornell's faculty in Fall 1978, having completed a Ph.D. at Stony Brook University and a B.S. in Engineering at Cornell in 1975.  Schneider currently also serves as the Chief Scientist for the NSF-funded TRUST Science and Technology Center. Schneider was elected Fellow of the American Association for the Advancement of Science (1992), the Association of Computing Machinery (1995), and the Institute of Electrical and Electronics Engineers (2008).

file

The Science Of Security: A Formal Perspective

Submitted by Katie Dey on Mon, 11/22/2010 - 11:50am. Contributor: