Path: utzoo!attcan!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!tut.cis.ohio-state.edu!pt.cs.cmu.edu!sei!ajpo!wellerd
From: wellerd@ajpo.sei.cmu.edu (David Weller)
Newsgroups: comp.object
Subject: Re: Information Security and (vs?) object oriented programming
Summary: Secirity in OODBMSs
Message-ID: <732@ajpo.sei.cmu.edu>
Date: 7 Dec 90 21:44:53 GMT
References: <BLK.90Dec5131625@vanity.mitre.org>
Reply-To: wellerd@ajpo.sei.cmu.edu (Dave Weller)
Organization: Ada Joint Program Office
Lines: 30

In article <BLK.90Dec5131625@vanity.mitre.org> blk@mitre.org (Brian L. Kahn) writes:
> [background stuff...]
>
>It is difficult to apply many of the concepts from this traditional
>(old-fashioned? archaic? 8-) view of system architecture to OOP.  This
>is unfortunate because OOP has much to offer the infosec world, a
>domain which prizes any improvements in functional assurance, life
>cycle maintenance, requirements tracing, and perhaps formal modelling.
>
>Can anyone give me references to papers on infosec or access control
>in OOP?  How about formal models (based in mathematics) for OOPLs?
>
 Yes.  Although focused on Object-Oriented Database Systems, this
article provides some interesting security perspectives and a decent
bibliography (OBVIOUSLY an Ed Berard protege :-).  It can be found in
JOOP (Mar/April 1990), pp. 18-25.  "Security in Object-Oriented
Database Systems."  By M.B. Thuraisingham.

>ADthanksVANCE,

RETRwelcomeEAT :-)
>
>--
>B<   Brian Kahn   blk@security.mitre.org   "may the farce be with you"
					     ^^^^^^^^^^^^^^^^^^^^^^^^^
"Lucky me."

Dave Weller             |    *  This message void where prohibited by law.
Computer Sciences Corp. |    *  Batteries not included.  Member FDIC.
LISP Disclaimer: (car (cdr ('Useless Comment  'Catchy Phrase)))