The Community for Technology Leaders
Green Image
Issue No. 05 - September/October (2011 vol. 28)
ISSN: 0740-7459
pp: 76-84
Eric Tanter , University of Chile
Rodolfo Toledo , University of Chile
ABSTRACT
ZAC is a practical lightweight library for access control in JavaScript based on aspect orientation. Its access control architecture is stack based, similar to those of Java and C#. However, ZAC integrates other features for more expressive access control. First, access control policies can be enforced at the level of objects, which permits more fine-grained control over resource access. Second, policies in ZAC can base their decisions on scripts' execution history. This lets developers express policies that are impossible to define using other models, such as bounded-time execution.
INDEX TERMS
language constructs and features, scripting languages, semantics, software, software engineering
CITATION
Eric Tanter, Rodolfo Toledo, "Access Control in JavaScript", IEEE Software, vol. 28, no. , pp. 76-84, September/October 2011, doi:10.1109/MS.2010.154
90 ms
(Ver 3.1 (10032016))