Re-designing the Web’s Access Control System - Data and Applications Security and Privacy XXV Access content directly
Conference Papers Year : 2011

Re-designing the Web’s Access Control System

Wenliang Du
  • Function : Author
  • PersonId : 1016205
Xi Tan
  • Function : Author
Tongbo Luo
  • Function : Author
Zutao Zhu
  • Function : Author


The Web is playing a very important role in our lives, and is becoming an essential element of the computing infrastructure. With such a glory come the attacks–the Web has become criminals’ preferred targets. Web-based vulnerabilities now outnumber traditional computer security concerns. Although various security solutions have been proposed to address the problems on the Web, few have addressed the root causes of why web applications are so vulnerable to these many attacks. We believe that the Web’s current access control models are fundamentally inadequate to satisfy the protection needs of today’s web, and they need to be redesigned. In this extended abstract, we explain our position, and summarize our efforts in redesigning the Web’s access control systems.
Fichier principal
Vignette du fichier
978-3-642-22348-8_2_Chapter.pdf (100.05 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

hal-01586586 , version 1 (13-09-2017)





Wenliang Du, Xi Tan, Tongbo Luo, Karthick Jayaraman, Zutao Zhu. Re-designing the Web’s Access Control System. 23th Data and Applications Security (DBSec), Jul 2011, Richmond, VA, United States. pp.4-11, ⟨10.1007/978-3-642-22348-8_2⟩. ⟨hal-01586586⟩
33 View
73 Download



Gmail Facebook X LinkedIn More