A Role-Based Approach to Restricting Application Execution
نویسندگان
چکیده
i Declaration This thesis is my own account of the research carried out by myself in 2005. Abstract As systems are becoming more interconnected, software is becoming less trustworthy and users are increasingly at greater risk of attack. Most operating systems allow programs to run with the full set of a user's permissions and this can result in malicious code with the ability to act outside of the expected behaviour of the application. Per-application restricted execution models can be utilised to confine applications and thus limit the ability of programs to act maliciously; however, established confinement models that allow finely-grained restricted access to shared resources require the construction of extremely complex policies that do not scale well to confine numerous applications. This has limited their practical usefulness and acceptance. Role-Based Access Control (RBAC) is a system-wide per-user confinement model that associates users with privileges via semantic constructs known as roles. RBAC mediates access to shared resources using abstract policy constructs, and provides access control with scalability and manageability. A new confinement model, Role-Based Execution Environment (RBEE), was designed to demonstrate the feasibility of adapting the RBAC model to a per-application context. RBEE illustrates that RBAC concepts can be applied to the area of per-application confinement to provide similar benefits: improvements in usability, manageability of policy and scalability; largely providing a solution to the impracticalities of finely-grained per-application confinement. iii Acknowledgements
منابع مشابه
Soccer Goalkeeper Task Modeling and Analysis by Petri Nets
In a robotic soccer team, goalkeeper is an important challenging role, which has different characteristics from the other teammates. This paper proposes a new learning-based behavior model for a soccer goalkeeper robot by using Petri nets. The model focuses on modeling and analyzing, both qualitatively and quantitatively, for the goalkeeper role so that we have a model-based knowledge of the ta...
متن کاملAn integrated simulation-DEA approach to multi-criteria ranking of scenarios for execution of operations in a construction project
The purpose of this study is to examine different scenarios for implementing operations in the pre-construction phase of a project, based on several competing criteria with different importance levels in order to achieve a more efficient execution plan. This paper presents a new framework that integrates discrete event simulation (DES) and data envelopment analysis (DEA) to rank different scena...
متن کاملActivating the Role of Audit Committees and Boards of Directors in Restricting Earnings Management Practices: A Perspective of Auditors in Jordan
The study objects for investigating the possibility of activating both audit committee and board of directors for restricting the practices of earnings management phenomenon. To achieve this objective, a questionnaire had been developed and self-administered for a selected sample consists of 123 auditors working in Jordan based on the simple random sampling method. The study first hypothesis is...
متن کاملProposing an Efficient Software-Based Method for Enhancing the Reliability of Critical Application Robot
Robots play such remarkable roles in humans’ modern lives that performing many tasks without them isimpossible. Using robotic systems is gradually increasing the tasks allocated to them and they are becomingmore complex and critical. Software reliability is one of the most significant requirements of robots. Forenhancing reliability, systems should be inherently designed to be tolerable of soft...
متن کاملRestricting the parameter set of the Pascoletti-Serafini scalarization
A common approach to determine efficient solutions of a multiple objective optimization problem is reformulating it to a parameter dependent scalar optimization problem. This reformulation is called scalarization approach. Here, a well-known scalarization approach named Pascoletti-Serafini scalarization is considered. First, some difficulties of this scalarization are discussed and then ...
متن کامل