Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications

Peter Herrmann; Heiko Krumm

doi:10.1109/ISCC.2001.935347

I
ISCC
2001
Sixth IEEE Symposium on Computers and Communications (ISCC'01)
Abstract - Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Peter Herrmann Articles by Heiko Krumm

Sixth IEEE Symposium on Computers and Communications (ISCC'01)

Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications

Hammamet, Tunisia

July 03-July 05

ISBN: 0-7695-1177-5

	ASCII Text	x
	Peter Herrmann, Heiko Krumm, "Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications," 2012 IEEE Symposium on Computers and Communications (ISCC), pp. 0002, Sixth IEEE Symposium on Computers and Communications (ISCC'01), 2001.

	BibTex	x
	@article{ 10.1109/ISCC.2001.935347, author = {Peter Herrmann and Heiko Krumm}, title = {Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications}, journal ={2012 IEEE Symposium on Computers and Communications (ISCC)}, volume = {0}, year = {2001}, isbn = {0-7695-1177-5}, pages = {0002}, doi = {http://doi.ieeecomputersociety.org/10.1109/ISCC.2001.935347}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - 2012 IEEE Symposium on Computers and Communications (ISCC) TI - Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications SN - 0-7695-1177-5 SP EP A1 - Peter Herrmann, A1 - Heiko Krumm, PY - 2001 KW - Software components KW - wrappers KW - trust management KW - security policy enforcement KW - trust information service. VL - 0 JA - 2012 IEEE Symposium on Computers and Communications (ISCC) ER -

Peter Herrmann, Universit?t Dortmund

Heiko Krumm, Universit?t Dortmund

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ISCC.2001.935347

Abstract: Software component technology on the one hand supports the cost-effective development of specialized applications. On the other hand, however, it introduces special security problems. Some major problems can be solved by the automated run-time enforcement of security policies. Each component is controlled by a wrapper which monitors the component's behavior and checks its compliance with the security behavior constraints of the component's employment contract. Since control functions and wrappers can cause substantial overhead, we introduce trust-adapted control functions where the intensity of monitoring and behavior checks depends on the level of trust, the component, its hosting environment, and its vendor have currently in the eyes of the application administration. We report on wrappers and a trust information service, shortly outline the embedding security model and architecture, and describe a Java Bean based experimental implementation.

Index Terms:

Software components, wrappers, trust management, security policy enforcement, trust information service.

Citation:

Peter Herrmann, Heiko Krumm, "Trust-Adapted Enforcement of Security Policies in Distributed Component-Structured Applications," iscc, pp.0002, Sixth IEEE Symposium on Computers and Communications (ISCC'01), 2001

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.