The STUDIA UNIVERSITATIS BABEŞ-BOLYAI issue article summary

The summary of the selected article appears at the bottom of the page. In order to get back to the contents of the issue this article belongs to you have to access the link from the title. In order to see all the articles of the archive which have as author/co-author one of the authors mentioned below, you have to access the link from the author's name.

The architecture and integration of distributed applications increased in complexity over the last decades. It was Service Oriented Architecture (SOA) that answered most of the emerging questions by its explicit and contract-based interface definitions for services and autonomous components. The exposed functionality can be used by anyone who has access to the public interface of SOA applications. Due to loose security handling, risks often emerge in SOA applications. Interfaces are usually published to an unnecessarily wide set of clients. Although there are attempts to implement fine-grained access control mechanisms in object-oriented programming languages like Eiffel, C# and Java, these solutions are in-process that means that they cannot cross service contract boundaries in distributed applications. For these, it is of utmost importance to validate the type and the identity of the caller, track the state of the business process and even validate the client itself using simple, declarative syntax. In this paper we present a framework that aims to introduce fine-grained access control mechanisms in the context of distributed .NET applications. We present a semi-formalized description of the framework and also a pilot implementation. 


Key words and phrases. Distributed applications, Security, Runtime access control, .NET.