Towards a definitive paradigm for security in object-oriented systems and applications

作     者：Demurjian Sr., S.A. Ting, T.C. 

作者机构：Univ of Connecticut Storrs United States 

出 版 物：《Journal of Computer Security》 (J Computer Secur)

年 卷 期：1997年第5卷第4期

页      面：341-382页

核心收录：

学科分类：081203[工学-计算机应用技术] 08[工学] 0835[工学-软件工程] 0812[工学-计算机科学与技术（可授工学、理学学位）] 

主　　题：Security of data 

摘      要：The utilization of the object-oriented approach to design and develop systems/applications has continued to increase throughout the 1990s. Security concerned users and organizations must now protect and control access to object-oriented systems and applications. This paper frames a paradigm for security in object-oriented systems and applications by addressing the following: - Should not security be elevated to a first-class partner throughout the entire design and development process? - What will be the role of existing approaches to security? - What characteristics of the object-oriented approach should influence the approach to its security? - How will assurance and consistency be attained during the definition, usage, and evolution of an application s security policy? In order to answer these and other questions, an interdisciplinary framework is needed that merges programming languages, software engineering, and databases. The main intent of this paper is to offer an initial treatment of this subject, yielding a definitive paradigm for object-oriented security.