Basic HTML version of Foils prepared May 19 99

Foil 68 JAVA Fine-grained Access Control-4

From Remarks on Internet and Java Security Basic Information Track Computational Science Course CPS616 -- Spring Semester 1999. by Geoffrey Fox, Mehmet Sen
1 Access Control: The java.security.AccessController class implements a dynamic stack inspection algorithm. The method checkPermission() provides permission grant check. Example: FilePermission p = new FilePermission("/tmp/junk", "read");
2 AccessController.checkPermission(p);
3 Privilege: Privileges are used to grant temporary permission to less-trusted code. Whenever a resource access is attempted, all code traversed by the execution thread up to that point must have permission for that resource access, unless some code on the thread has been marked as "privileged". That is, suppose access control checking occurs in a thread of execution that has a chain of multiple callers. When the AccessController checkPermission method is invoked by the most recent caller, it decides whether to allow or deny the requested access.
in Table To:

© Northeast Parallel Architectures Center, Syracuse University, npac@npac.syr.edu

If you have any comments about this server, send e-mail to webmaster@npac.syr.edu.

Page produced by wwwfoil on Wed May 19 1999