Information Flow Control on Objects

V.I. Wietrzyk and M. Takizawa (Japan)


Object Systems, Object Oriented, Information Flow, Role Based Model, Access Control


In a secure object-based system, subjects are allowed to manipulate objects only in authorized methods. In addition, every information flow to occur among objects is required to be legal, i.e. no confinement problem occur. In this paper, we discuss how to prevent illegal information flow to occur among objects by performing methods in a role-based access control model. In addition, we discuss an algorithm to check if illegal information flow occurs each time a method is issued by a transaction.

Important Links:

Go Back