Method-Specific Access Control in Java via Proxy Objects using Annotations

Zarnett, Jeffrey

January 2010

Partially restricting access to objects enables system designers to finely control the security of their systems. We propose a novel approach that allows granting partial access at method granularity on arbitrary objects to remote clients, using proxy objects. Our initial approach considers methods to be either safe (may be invoked by anyone) or unsafe (may be invoked only by trusted users). We next generalize this approach by supporting Role-Based Access Control (RBAC) for methods in objects. In our approach, a policy implementer annotates methods, interfaces, and classes with roles. Our system automatically creates proxy objects for each role, which contain only methods to which that role is authorized. This thesis explains the method annotation process, the semantics of annotations, how we derive proxy objects based on annotations, and how clients invoke methods via proxy objects. We present the advantages to our approach, and distinguish it from existing approaches to method-granularity access control. We provide detailed semantics of our system, in First Order Logic, to describe its operation. We have implemented our system in the Java programming language and evaluated its performance and usability. Proxy objects have minimal overhead: creation of a proxy object takes an order of magnitude less time than retrieving a reference to a remote object. Deriving the interface---a one-time cost---is on the same order as retrieval. We present empirical evidence of the effectiveness of our approach by discussing its application to software projects that range from thousands to hundreds of thousands of lines of code; even large software projects can be annotated in less than a day.

Access Control

Java

Proxy Object

Annotation

Security

Electrical and Computer Engineering

Method-Specific Access Control in Java via Proxy Objects using Annotations

Zarnett, Jeffrey

January 2010

Partially restricting access to objects enables system designers to finely control the security of their systems. We propose a novel approach that allows granting partial access at method granularity on arbitrary objects to remote clients, using proxy objects. Our initial approach considers methods to be either safe (may be invoked by anyone) or unsafe (may be invoked only by trusted users). We next generalize this approach by supporting Role-Based Access Control (RBAC) for methods in objects. In our approach, a policy implementer annotates methods, interfaces, and classes with roles. Our system automatically creates proxy objects for each role, which contain only methods to which that role is authorized. This thesis explains the method annotation process, the semantics of annotations, how we derive proxy objects based on annotations, and how clients invoke methods via proxy objects. We present the advantages to our approach, and distinguish it from existing approaches to method-granularity access control. We provide detailed semantics of our system, in First Order Logic, to describe its operation. We have implemented our system in the Java programming language and evaluated its performance and usability. Proxy objects have minimal overhead: creation of a proxy object takes an order of magnitude less time than retrieving a reference to a remote object. Deriving the interface---a one-time cost---is on the same order as retrieval. We present empirical evidence of the effectiveness of our approach by discussing its application to software projects that range from thousands to hundreds of thousands of lines of code; even large software projects can be annotated in less than a day.

Access Control

Java

Proxy Object

Annotation

Security

Electrical and Computer Engineering

Visual Studio Add-in for Proxy Object Code Generation

Thangavel, Gopalakrishnan

January 2013

In recent years, Component models have become common for desktop and server-side applications. But it has not obtained such importance in case of embedded real-time systems.  Therefore, there has been a lot of research undergoing for introducing such component models for embedded real-time systems.  This thesis work proposes an alternative approach for doing this, by the generation of proxies.   The idea is to provide an extension to an existing binary component and modify it to adapt to the targeted real-time operating system. Rather than modifying the existing component, a new component is generated, which is called as the proxy component.  This newly generated proxy component provides the same method implementation as the original component and also provides some additional services.  These services enable these components to meet the needs of targeted embedded real-time systems.  In order to achieve this, a Visual Studio 2008 add-in has been created. This add-in is capable of inspecting an existing Smart Device Component and visualizes the Classes, Interfaces and Methods in the original component in its UI.  In addition to this, the add-in also shows the available services to be included in the proxy component.  The UI of the add-in is designed in such a way that, the user is able to select the services, which should be included in the proxy component.  Based on the user’s selection, the add-in generates the proxy component with the additional services.

Visual Studio Add-Ins

Code generation

Proxy Object

VC++ Code generation

Visual Studio Plugin