History-Sensitive Versus Future-Sensitive Approaches to Security in Distributed Systems

Download Now Date Added: Oct 2010
Format: PDF

The authors consider the use of aspect-oriented techniques as a flexible way to deal with security policies in distributed systems. Recent work suggests to use aspects for analysing the future behaviour of programs and to make access control decisions based on this; this gives the flavors of dealing with information flow rather than mere access control. They show in this paper that it is beneficial to augment this approach with history-based components as is the traditional approach in reference monitor-based approaches to mandatory access control.