An Access Control Framework for Reflective J2EE Application Server

BAI Jia; HUANG Gang; LIU Zhao; LIU Tian-cheng; ZHENG Zi-zhan; MEI Hong

您当前的位置：

首页 >

文章列表页 >

An Access Control Framework for Reflective J2EE Application Server

更新时间：2025-07-16

- An Access Control Framework for Reflective J2EE Application Server
- Acta Electronica Sinica Vol. 32, Issue S1, Pages: 211-214(2004)
- 作者机构：
  
  北京大学信息科学技术学院软件研究所,北京,100871
- 作者简介：
- 基金信息：
- DOI：
  CLC： TP311
- Published：2004
- 稿件说明：
移动端阅览
BAI Jia, HUANG Gang, LIU Zhao, et al. An Access Control Framework for Reflective J2EE Application Server[J]. Acta Electronica Sinica, 2004, 32(S1): 211-214.
DOI：

BAI Jia, HUANG Gang, LIU Zhao, et al. An Access Control Framework for Reflective J2EE Application Server[J]. Acta Electronica Sinica, 2004, 32(S1): 211-214. DOI：

摘要

反射式软件中间件改变了传统中间件纯粹的黑盒复用方式

以观测和控制基于中间件的软件系统的运行状态和行为.作为主流的中间件产品

构件运行支撑平台有必要引入反射以适应动态开放的Internet环境.但是

在带来更大开放性的同时

反射也给构件运行支撑平台带来安全隐患.为此

针对反射体系的特点

本文逐层分析其中潜在的安全隐患

制定了一种特定于反射体系的安全框架

实现了四层安全访问控制机制.该安全框架在反射式J2EE应用服务器PKUAS(Peking University Application Server)中得到实现

并通过性能测试考察了安全框架对反射系统运行时刻性能的影响.

Abstract

Reflective middleware opens up the implementation details of middleware platform and applications at runtime to improve the adaptability of traditional middleware.However

such openness brings new threats to security of middleware platform and applications.This paper studies how to protect a reflective J2EE application server with a set of access control mechanisms.At first

a computation model of reflective middleware is built up and illustrates that the access control of reflective middleware is far more com plex and difficult to implement than that of traditional middleware.With the model

all potential access control points are identified while only some of the points require access control mechanisms.It reveals that the complexity and cost of the access control framework are mainly related to the concrete implementation of reflective mechanisms.At last

the framework is implemented mainly by reusing the access control mechanisms existing in traditional middleware and the performance is evaluated.

关键词

Keywords

references

Views

868

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

A Self-Healing Group Key Management Scheme in Wireless Sensor Networks

Related Author

PENG Qing-quan

PEI Qing-qi

MA Jian-feng

PANG Liao-jun

Related Institution

西安电子科技大学计算机网络与信息安全教育部重点实验室

中国电子设备系统工程公司研究所

⁰