Basic HTML version of Foils prepared May 19 99

Foil 65 JAVA Fine-grained Access Control-1

From Remarks on Internet and Java Security Basic Information Track Computational Science Course CPS616 -- Spring Semester 1999. by Geoffrey Fox, Mehmet Sen
1 Essential mechanisms include the following:
2 Identity:Every piece of code needs a specific identity for security decisions. Origin (URL) and signature, represented in the class java.security.CodeSource , define identity.
3 Permissions: System requests to perform a particular operation on particular target are allowed based on permissions. A policy says which permissions are granted to which principals. Permissions include:
  • java.io.FilePermission for file system access, e.g., f = new filePermission ("/tmp/applets.db", "read");
  • java.net.SocketPermission for network access, e.g., sp= new SocketPermission("npac.syr.edu:3768", "connect")
  • java.lang.PropertyPermission for Java properties
  • java.lang.RuntimePermission for access to runtime system resources
  • java.security.NetPermission for authentication
  • java.awt.AWTPermission for access to graphical resources such as windows
in Table To:

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Wed May 19 1999