A language extension for expressing constraints on data access
- 1 May 1978
- journal article
- Published by Association for Computing Machinery (ACM) in Communications of the ACM
- Vol. 21 (5) , 358-367
- https://doi.org/10.1145/359488.359493
Abstract
Controlled sharing of information is needed and desirable for many applications and is supported in operating systems by access control mechanisms. This paper shows how to extend programming languages to provide controlled sharing. The extension permits expression of access constraints on shared data. Access constraints can apply both to simple objects, and to objects that are components of larger objects, such as bank account records in a bank's data base. The constraints are stated declaratively, and can be enforced by static checking similar to type checking. The approach can be used to extend any strongly-typed language, but is particularly suitable for extending languages that support the notion of abstract data types.Keywords
This publication has 12 references indexed in Scilit:
- A model for verification of data security in operating systemsCommunications of the ACM, 1978
- Abstraction mechanisms in CLUCommunications of the ACM, 1977
- A Tutorial on Algol 68ACM Computing Surveys, 1976
- Reflections on an operating system designCommunications of the ACM, 1976
- Towards the design of secure systemsSoftware: Practice and Experience, 1975
- The protection of information in computer systemsProceedings of the IEEE, 1975
- Capability-based addressingCommunications of the ACM, 1974
- HYDRACommunications of the ACM, 1974
- The programming language pascalActa Informatica, 1971
- Programming semantics for multiprogrammed computationsCommunications of the ACM, 1966