Static analysis of role-based access control in J2EE applications

Naumovich, Gleb; Centonze, Paolina

doi:10.1145/1022494.1022530

Cited by 30 publications

(12 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Related work on J2EE access control configurations analysis [13,14] stems from premises analogous to ours. However these approaches rather focus on checking the consistency of programmatic access control configurations w.r.t.…”

Section: Related Workmentioning

confidence: 99%

“…However these approaches rather focus on checking the consistency of programmatic access control configurations w.r.t. the implementation of J2EE components of the business tier [13] or both business and web tiers [14], in order, e.g., to detect accesses to EJB fields or methods inconsistent with the access control policy. Our work focusing on declarative security is complementary: our formalization supports other reasoning tasks, such as the comparison of different configurations.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Access Control Configuration for J2EE Web Applications: A Formal Perspective

Casalino

Thion

Hacid

2012

Trust, Privacy and Security in Digital Business

View full text Add to dashboard Cite

Abstract. Business services are increasingly dependent upon Web applications. Whereas URL-based access control is one of the most prominent and pervasive security mechanism in use, failure to restrict URL accesses is still a major security risk. We argue that this risk can be mitigated by providing formal analysis tools to evaluate access control policies as well as the impact of changes on configurations. In order to tackle this issue, this paper gives a formal semantics for access control constraints standardized in the J2EE Java Servlet Specification, arguably one of the most common framework for web applications. Two different analysis tools are developed on top of this formal building block: a decision engine and a comparison algorithm for change impact of access control configurations. The formal semantics is compared against two major web application containers. The experiments reveal non-compliant access control decisions of these containers and validate our approach.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Access Control Configuration for J2EE Web Applications: A Formal Perspective

Casalino

Thion

Hacid

2012

Trust, Privacy and Security in Digital Business

View full text Add to dashboard Cite

show abstract

“…Another research topic of interest during the last years is Java EE 31 as a software architecture for the transaction-based execution of applications programmed in Java. In 2004, Naumovich and Centonze (2004) focused on EJBs inside the J2EE middleware framework. Another approach for combining roles and Java EE is provided in Sun et al (2008) where the authors presented a role-based proposal for automatic generation of J2EE access control configurations.…”

Section: Roles In Middleware Architecturesmentioning

confidence: 99%

Roles in information security – A survey and classification of the research area

Fuchs

Pernul

Sandhu

2011

Computers & Security

View full text Add to dashboard Cite

show abstract

“…In comparison, the other kinds of attacks we consider in this paper have received far less attention; notable exceptions include [24,50] on access control and authentication, [37] on session integrity, and [9,47] on CSRF. Some recent work studies new kinds of attacks that we do not consider in this paper; they include clickjacking [6] and XCS (cross-channel scripting) [15] in particular.…”

Section: Related Workmentioning

confidence: 99%

Symbolic security analysis of ruby-on-rails web applications

Chaudhuri

Foster

2010

Proceedings of the 17th ACM Conference on Computer and Communications Security

View full text Add to dashboard Cite

Many of today's web applications are built on frameworks that include sophisticated defenses against malicious adversaries. However, mistakes in the way developers deploy those defenses could leave applications open to attack. To address this issue, we introduce Rubyx, a symbolic executor that we use to analyze Ruby-onRails web applications for security vulnerabilities. Rubyx specifications can easily be adapted to a variety of properties, since they are built from general assertions, assumptions, and object invariants. We show how to write Rubyx specifications to detect susceptibility to cross-site scripting and cross-site request forgery, insufficient authentication, leaks of secret information, insufficient access control, as well as application-specific security properties. We used Rubyx to check seven web applications from various sources against our specifications. We found many vulnerabilities, and each application was subject to at least one critical attack. Encouragingly, we also found that it was relatively easy to fix most vulnerabilities, and that Rubyx showed the absence of attacks after our fixes. Our results suggest that Rubyx is a promising new way to analyze Ruby-on-Rails web applications for security vulnerabilities.

show abstract

Static analysis of role-based access control in J2EE applications

Cited by 30 publications

References 22 publications

Access Control Configuration for J2EE Web Applications: A Formal Perspective

Access Control Configuration for J2EE Web Applications: A Formal Perspective

Roles in information security – A survey and classification of the research area

Symbolic security analysis of ruby-on-rails web applications

Contact Info

Product

Resources

About