000000236 001__ 236
000000236 005__ 20130522141940.0
000000236 037__ $$aLERSSE-RefJnlPaper-2010-001
000000236 100__ $$aWesam Darwish
000000236 245__ $$aAnalysis of ANSI RBAC Support in COM+
000000236 260__ $$c2010-01-31
000000236 300__ $$a18
000000236 520__ $$aWe analyze access control mechanisms of the COM+ architecture and define a configuration of the COM+ protection system in more precise and less ambiguous language than the COM+ documentation. Using this configuration, we suggest an algorithm that formally specifies the semantics of authorization decisions in COM+. We analyze the level of support for the American National Standard Institute's (ANSI) specification of role-based access control (RBAC) components and functional specification in COM+. Our results indicate that COM+ falls short of supporting even Core RBAC. The main limitations exist due to the tight integration of the COM+ architecture with the underlying operating system, which prevents support for session management and role activation, as specified in ANSI RBAC.
000000236 6531_ $$aaccess control
000000236 6531_ $$aRBAC
000000236 6531_ $$aCOM+
000000236 6531_ $$amiddleware
000000236 700__ $$aKonstantin Beznosov
000000236 8560_ $$fbeznosov@ece.ubc.ca
000000236 8564_ $$uhttp://lersse-dl.ece.ubc.ca/record/236/files/236.pdf$$yTransfer from CDS 0.99.7
000000236 909C4 $$pDarwish, W. and Beznosov, K. Analysis of ANSI RBAC Support in COM+. Comput. Stand. Interfaces 32, 4 (Jan. 2010), 197-214. 
000000236 980__ $$aRefJnlPaper