Security for object-oriented systems : proceedings of the OOPSLA-93 Conference Workshop on Security for Object-Oriented Systems, Washington, DC, USA, 26 September 1993

This volume contains papers from the OOPSLA-93 Conference Workshop on Security for Object-Oriented Systems, held in Washington DC, USA, on 26 September 1993. The workshop addressed the issue of how to introduce an acceptable level of security into object-oriented systems, as the use of such systems becomes increasingly widespread. The topic is approached from two different, but complementary, viewpoints: the incorporation of security into object-oriented systems, and the use of object-oriented design and modelling techniques for designing secure applications. The papers cover a variety of issues, relating to both mandatory and discretionary security, including security facilities of PCTE, information flow control, the design of multilevel secure data models, and secure database interoperation via role translation. The resulting volume provides a comprehensive overview of current work in this important area of research.

Security for Object-Oriented Systems: An Editorial Overview.- I: Applications and Systems.- Integrating Object Oriented Technology and Security in Medical Database Systems.- The Security Facilities of PCTE.- A Base for Secure Object Oriented Environments.- An Object-Oriented Application Security Framework.- II: Multilevel Secure Systems.- Multilevel Security in Object-Oriented Databases.- Object-Oriented Security in the Trusted Mach Operating System.- Enforcing Mandatory Access Control in Object Bases.- Information Flow Control in Object-Oriented Programs.- III: Authorization and Access Control.- A Method-Based Authorization Model for Object-Oriented Databases.- The Factors that Influence Apropos Security Approaches for the Object-Oriented Paradigm.- An Access Control Model for a Parallel Object-Based Programming Language.- Research Issues in Discretionary Authorizations for Object Bases.- IV: Multilevel Applications, Systems, and Issues.- Using Object Modeling Techniques to Design MLS Data Models.- Can We Do Without Monotonically Non-Decreasing Levels in Class Hierarchies?.- Concurrency, Synchronization, and Scheduling to Support High-Assurance Write-Up in Multilevel Object-Based Computing.- Secure Database Interoperation via Dynamic Addition of Roles.- Author Index.