Verfügbarkeit: Auto-generation of least privileges access control policies for applications supported by user input recognition

Auto-generation of least privileges access control policies for applications supported by user input recognition:

Gespeichert in:

Bibliographische Detailangaben
Beteilige Person:	Lachmund, Sven L. (VerfasserIn)
Format:	Hochschulschrift/Dissertation Buch
Sprache:	Englisch
Veröffentlicht:	München Verl. Dr. Hut 2010
Ausgabe:	1. Aufl.
Schriftenreihe:	Informatik
Schlagwörter:	Benutzer Zutrittsrecht Zugriffskontrolle Hochschulschrift
Links:	http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=020867667&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA
Umfang:	XXV, 235 S. graph. Darst.
ISBN:	9783868536645

Internformat

MARC


LEADER	00000nam a2200000 c 4500
001	BV036952644
003	DE-604
005	20110408
007	t\|
008	110112s2010 xx d\|\|\| m\|\|\| 00\|\|\| eng d
020			\|a 9783868536645 \|9 978-3-86853-664-5
035			\|a (OCoLC)702646412
035			\|a (DE-599)BVBBV036952644
040			\|a DE-604 \|b ger \|e rakwb
041	0		\|a eng
049			\|a DE-91 \|a DE-91G \|a DE-473 \|a DE-12
082	0		\|a 005.8 \|2 22/ger
084			\|a ST 280 \|0 (DE-625)143645: \|2 rvk
084			\|a DAT 460d \|2 stub
084			\|a DAT 310d \|2 stub
100	1		\|a Lachmund, Sven L. \|e Verfasser \|4 aut
245	1	0	\|a Auto-generation of least privileges access control policies for applications supported by user input recognition \|c Sven L. Lachmund
250			\|a 1. Aufl.
264		1	\|a München \|b Verl. Dr. Hut \|c 2010
300			\|a XXV, 235 S. \|b graph. Darst.
336			\|b txt \|2 rdacontent
337			\|b n \|2 rdamedia
338			\|b nc \|2 rdacarrier
490	0		\|a Informatik
502			\|a Zugl.: München, Techn. Univ., Diss., 2010
650	0	7	\|a Benutzer \|0 (DE-588)4138534-2 \|2 gnd \|9 rswk-swf
650	0	7	\|a Zutrittsrecht \|0 (DE-588)4068169-5 \|2 gnd \|9 rswk-swf
650	0	7	\|a Zugriffskontrolle \|0 (DE-588)4293034-0 \|2 gnd \|9 rswk-swf
655		7	\|0 (DE-588)4113937-9 \|a Hochschulschrift \|2 gnd-content
689	0	0	\|a Zugriffskontrolle \|0 (DE-588)4293034-0 \|D s
689	0	1	\|a Zutrittsrecht \|0 (DE-588)4068169-5 \|D s
689	0	2	\|a Benutzer \|0 (DE-588)4138534-2 \|D s
689	0		\|5 DE-604
856	4	2	\|m DNB Datenaustausch \|q application/pdf \|u http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=020867667&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA \|3 Inhaltsverzeichnis
943	1		\|a oai:aleph.bib-bvb.de:BVB01-020867667

Datensatz im Suchindex

DE-BY-TUM_call_number	0001 DM 28779 0109 DM 28779
DE-BY-TUM_katkey	1752491
DE-BY-TUM_location	Mag 01
DE-BY-TUM_media_number	040009031070 040010203208
_version_	1821933290760699904
adam_text	IMAGE 1 CONTENTS PREFACE 1 GUIDELINES FOR THE READER 3 I INTRODUCTION AND SECURITY BASICS 5 1 INTRODUCTION AND MOTIVATION 7 1.1 PROBLEM STATEMENT 7 1.2 OBJECTIVE AND APPROACH 9 1.3 CONTRIBUTIONS 10 1.4 SUMMARY OF RESULTS 11 1.5 THREAT MODEL 12 2 DEFINITION OF TERMS AND ABBREVIATIONS 15 3 SECURITY 25 3.1 THE NEED FOR SECURITY 25 3.2 SYSTEM SECURITY 27 3.3 PROBLEMS OF (SYSTEM) SECURITY 28 3.4 ACCESS CONTROL 33 II EXISTING SOLUTIONS AND RELATED WORK 37 4 STATIC AND DYNAMIC SECURITY POLICY GENERATION 39 4.1 OBSERVATION OF APPLICATION EXECUTION 39 4.2 STATIC ANALYSIS 42 4.3 CONCLUSION 53 5 POLICY LANGUAGES AND POLICY COMPOSITION 55 5.1 ABSTRACT POLICY ENFORCEMENT MODEL 55 BIBLIOGRAFISCHE INFORMATIONEN HTTP://D-NB.INFO/1008314579 DIGITALISIERT DURCH IMAGE 2 5.2 POLICY LANGUAGES 57 5.3 POLICY COMPOSITION 68 5.4 CONCLUSION 70 PROGRAMMING LANGUAGE SECURITY AND SECURE SOFTWARE DEVELOPMENT 71 6.1 COMPILER AND LINKER 73 6.2 JAVA 74 6.3 .NET FRAMEWORK 91 6.4 ANDROID 93 6.5 OTHER PROGRAMMING LANGUAGES 94 6.6 OBJECT CAPABILITIES 94 6.7 SECURE SOFTWARE DEVELOPMENT 96 6.8 CONCLUSION 98 III GENERATE, COMPOSE AND ADAPT ACCESS CONTROL POLICIES 101 7 SYNTHESIS 103 7.1 CONTRIBUTIONS 108 7.2 APPROACH 109 7.3 CONSIDERATIONS 113 8 AUTO-GENERATE APPLICATION POLICY AT DEVELOPMENT TIME WITH USER INPUT RECOGNITION 119 8.1 USER INPUT-OBTAINING CLASSES 121 8.2 OBSERVATION-BASED DYNAMIC ANALYSIS - VARIANT 1 124 8.3 CALL GRAPH-BASED STATIC ANALYSIS - VARIANT 2 128 8.4 POLICY GENERATION 132 8.5 SUMMARY OF ENTIRE POLICY GENERATION PROCESS 133 8.6 COMBINATION OF VARIANT 1 AND VARIANT 2 134 8.7 CONCLUSION 135 9 POLICY COMPOSITION AND ADAPTATION 137 9.1 COMPOSE EFFECTIVE POLICY AT RUNTIME 137 9.2 ADAPT EFFECTIVE POLICY DYNAMICALLY AT RUNTIME 142 9.3 CONCLUSION 148 IMAGE 3 IV IMPLEMENTATION 149 10 IMPLEMENTATION CONSIDERATIONS 151 10.1 FUNCTIONALITY COVERED BY THE IMPLEMENTATIONS 152 10.2 OBJECT-ORIENTATION OF JAVA 152 11 AUTO-GENERATE APPLICATION POLICY IN JAVA 155 11.1 CLASSES TO BE AUGMENTED 155 11.2 ASPECTS 159 11.3 TRACKING USER INTERACTIONS 162 11.4 GENERATING THE APPLICATION POLICY 164 11.5 EVALUATION 164 12 POLICY COMPOSITION AND ADAPTATION IN JAVA 169 12.1 REQUIREMENTS FOR A POLICY PROVIDER FOR JAVA 169 12.2 EVALUATION OF POLICY LANGUAGES 172 12.3 NEW POLICY PROVIDER IMPLEMENTATION 179 12.4 EVALUATION OF POLICY PROVIDER IMPLEMENTATION 185 V EVALUATION 187 13 DISCUSSION 189 13.1 EVALUATION 189 13.2 FUTURE WORK 195 13.3 OUTLOOK: CONSIDERING DEVELOPER INVOLVEMENT 196 14 SUMMARY AND CONCLUSION 203 APPENDIX 207 LIST OF ABBREVIATIONS 209 LIST OF FIGURES 211 LIST OF TABLES 213 BIBLIOGRAPHY 215 INDEX 233
any_adam_object	1
author	Lachmund, Sven L.
author_facet	Lachmund, Sven L.
author_role	aut
author_sort	Lachmund, Sven L.
author_variant	s l l sl sll
building	Verbundindex
bvnumber	BV036952644
classification_rvk	ST 280
classification_tum	DAT 460d DAT 310d
ctrlnum	(OCoLC)702646412 (DE-599)BVBBV036952644
dewey-full	005.8
dewey-hundreds	000 - Computer science, information, general works
dewey-ones	005 - Computer programming, programs, data, security
dewey-raw	005.8
dewey-search	005.8
dewey-sort	15.8
dewey-tens	000 - Computer science, information, general works
discipline	Informatik
edition	1. Aufl.
format	Thesis Book
fullrecord	<?xml version="1.0" encoding="UTF-8"?><collection xmlns="http://www.loc.gov/MARC21/slim"><record><leader>01744nam a2200445 c 4500</leader><controlfield tag="001">BV036952644</controlfield><controlfield tag="003">DE-604</controlfield><controlfield tag="005">20110408 </controlfield><controlfield tag="007">t\|</controlfield><controlfield tag="008">110112s2010 xx d\|\|\| m\|\|\| 00\|\|\| eng d</controlfield><datafield tag="020" ind1=" " ind2=" "><subfield code="a">9783868536645</subfield><subfield code="9">978-3-86853-664-5</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(OCoLC)702646412</subfield></datafield><datafield tag="035" ind1=" " ind2=" "><subfield code="a">(DE-599)BVBBV036952644</subfield></datafield><datafield tag="040" ind1=" " ind2=" "><subfield code="a">DE-604</subfield><subfield code="b">ger</subfield><subfield code="e">rakwb</subfield></datafield><datafield tag="041" ind1="0" ind2=" "><subfield code="a">eng</subfield></datafield><datafield tag="049" ind1=" " ind2=" "><subfield code="a">DE-91</subfield><subfield code="a">DE-91G</subfield><subfield code="a">DE-473</subfield><subfield code="a">DE-12</subfield></datafield><datafield tag="082" ind1="0" ind2=" "><subfield code="a">005.8</subfield><subfield code="2">22/ger</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">ST 280</subfield><subfield code="0">(DE-625)143645:</subfield><subfield code="2">rvk</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">DAT 460d</subfield><subfield code="2">stub</subfield></datafield><datafield tag="084" ind1=" " ind2=" "><subfield code="a">DAT 310d</subfield><subfield code="2">stub</subfield></datafield><datafield tag="100" ind1="1" ind2=" "><subfield code="a">Lachmund, Sven L.</subfield><subfield code="e">Verfasser</subfield><subfield code="4">aut</subfield></datafield><datafield tag="245" ind1="1" ind2="0"><subfield code="a">Auto-generation of least privileges access control policies for applications supported by user input recognition</subfield><subfield code="c">Sven L. Lachmund</subfield></datafield><datafield tag="250" ind1=" " ind2=" "><subfield code="a">1. Aufl.</subfield></datafield><datafield tag="264" ind1=" " ind2="1"><subfield code="a">München</subfield><subfield code="b">Verl. Dr. Hut</subfield><subfield code="c">2010</subfield></datafield><datafield tag="300" ind1=" " ind2=" "><subfield code="a">XXV, 235 S.</subfield><subfield code="b">graph. Darst.</subfield></datafield><datafield tag="336" ind1=" " ind2=" "><subfield code="b">txt</subfield><subfield code="2">rdacontent</subfield></datafield><datafield tag="337" ind1=" " ind2=" "><subfield code="b">n</subfield><subfield code="2">rdamedia</subfield></datafield><datafield tag="338" ind1=" " ind2=" "><subfield code="b">nc</subfield><subfield code="2">rdacarrier</subfield></datafield><datafield tag="490" ind1="0" ind2=" "><subfield code="a">Informatik</subfield></datafield><datafield tag="502" ind1=" " ind2=" "><subfield code="a">Zugl.: München, Techn. Univ., Diss., 2010</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Benutzer</subfield><subfield code="0">(DE-588)4138534-2</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Zutrittsrecht</subfield><subfield code="0">(DE-588)4068169-5</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="650" ind1="0" ind2="7"><subfield code="a">Zugriffskontrolle</subfield><subfield code="0">(DE-588)4293034-0</subfield><subfield code="2">gnd</subfield><subfield code="9">rswk-swf</subfield></datafield><datafield tag="655" ind1=" " ind2="7"><subfield code="0">(DE-588)4113937-9</subfield><subfield code="a">Hochschulschrift</subfield><subfield code="2">gnd-content</subfield></datafield><datafield tag="689" ind1="0" ind2="0"><subfield code="a">Zugriffskontrolle</subfield><subfield code="0">(DE-588)4293034-0</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2="1"><subfield code="a">Zutrittsrecht</subfield><subfield code="0">(DE-588)4068169-5</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2="2"><subfield code="a">Benutzer</subfield><subfield code="0">(DE-588)4138534-2</subfield><subfield code="D">s</subfield></datafield><datafield tag="689" ind1="0" ind2=" "><subfield code="5">DE-604</subfield></datafield><datafield tag="856" ind1="4" ind2="2"><subfield code="m">DNB Datenaustausch</subfield><subfield code="q">application/pdf</subfield><subfield code="u">http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=020867667&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA</subfield><subfield code="3">Inhaltsverzeichnis</subfield></datafield><datafield tag="943" ind1="1" ind2=" "><subfield code="a">oai:aleph.bib-bvb.de:BVB01-020867667</subfield></datafield></record></collection>
genre	(DE-588)4113937-9 Hochschulschrift gnd-content
genre_facet	Hochschulschrift
id	DE-604.BV036952644
illustrated	Illustrated
indexdate	2024-12-20T14:45:16Z
institution	BVB
isbn	9783868536645
language	English
oai_aleph_id	oai:aleph.bib-bvb.de:BVB01-020867667
oclc_num	702646412
open_access_boolean
owner	DE-91 DE-BY-TUM DE-91G DE-BY-TUM DE-473 DE-BY-UBG DE-12
owner_facet	DE-91 DE-BY-TUM DE-91G DE-BY-TUM DE-473 DE-BY-UBG DE-12
physical	XXV, 235 S. graph. Darst.
publishDate	2010
publishDateSearch	2010
publishDateSort	2010
publisher	Verl. Dr. Hut
record_format	marc
series2	Informatik
spellingShingle	Lachmund, Sven L. Auto-generation of least privileges access control policies for applications supported by user input recognition Benutzer (DE-588)4138534-2 gnd Zutrittsrecht (DE-588)4068169-5 gnd Zugriffskontrolle (DE-588)4293034-0 gnd
subject_GND	(DE-588)4138534-2 (DE-588)4068169-5 (DE-588)4293034-0 (DE-588)4113937-9
title	Auto-generation of least privileges access control policies for applications supported by user input recognition
title_auth	Auto-generation of least privileges access control policies for applications supported by user input recognition
title_exact_search	Auto-generation of least privileges access control policies for applications supported by user input recognition
title_full	Auto-generation of least privileges access control policies for applications supported by user input recognition Sven L. Lachmund
title_fullStr	Auto-generation of least privileges access control policies for applications supported by user input recognition Sven L. Lachmund
title_full_unstemmed	Auto-generation of least privileges access control policies for applications supported by user input recognition Sven L. Lachmund
title_short	Auto-generation of least privileges access control policies for applications supported by user input recognition
title_sort	auto generation of least privileges access control policies for applications supported by user input recognition
topic	Benutzer (DE-588)4138534-2 gnd Zutrittsrecht (DE-588)4068169-5 gnd Zugriffskontrolle (DE-588)4293034-0 gnd
topic_facet	Benutzer Zutrittsrecht Zugriffskontrolle Hochschulschrift
url	http://bvbr.bib-bvb.de:8991/F?func=service&doc_library=BVB01&local_base=BVB01&doc_number=020867667&sequence=000001&line_number=0001&func_code=DB_RECORDS&service_type=MEDIA
work_keys_str_mv	AT lachmundsvenl autogenerationofleastprivilegesaccesscontrolpoliciesforapplicationssupportedbyuserinputrecognition

Verfügbarkeit

Bestellen (Login erforderlich)

Inhaltsverzeichnis
Paper/Kapitel scannen lassen

Bibliotheksmagazin

Bestandsangaben von Bibliotheksmagazin
Signatur:	0001 DM 28779 Lageplan
Exemplar 1	Ausleihbar Am Standort

Teilbibliothek Mathematik & Informatik, Dissertationen und Abschlussarbeiten

Bestandsangaben von Teilbibliothek Mathematik & Informatik, Dissertationen und Abschlussarbeiten
Signatur:	0109 DM 28779 Lageplan
Exemplar 1	Ausleihbar Am Standort