Volume 4 Number 12 (Dec. 2009)
Home > Archive > 2009 > Volume 4 Number 12 (Dec. 2009) >
JCP 2009 Vol.4(12): 1322-1331 ISSN: 1796-203X
doi: 10.4304/jcp.4.12.1322-1331

Key-Lock Mechanisms for Object Protection in Single-Address-Space Systems

Lanfranco Lopriore
Dipartimento di Ingegneria dell’Informazione: Elettronica, Informatica, Telecomunicazi oni, Università di Pisa via G. Caruso 16, 56122 Pisa, Italy
Abstract—This paper focuses on memory addressing environments that support the notion of a single address space. We consider the problem of hampering access attempts to the private objects of a given thread, when these attempts are generated by unauthorized threads of different processes. We introduce two different forms of access privilege representation - handles and gates - which are designed to coexist within the boundaries of the same protection system. The handle concept is a generalization of the classical protected pointer concept. A handle associates several keys (passwords) with an object name. Each key grants a specific access right to the named object. A gate is a compact representation of access privileges, which uses a single bit to encode an access right. Handles are protected from forgery by key sparseness. They can be freely mixed in memory with ordinary data. On the other hand, gates are sensitive data that must be kept segregated in private memory regions of the protection system. The dualism of handles and gates makes it possible to take advantage of the simplicity of access right distribution and object sharing between threads, which is characteristic of key-based protection systems, and to avoid the negative impact on overall system performance, which results from the large key size and the high costs of lengthy processing that are connected with key validation.

Index Terms—Access right, process, protection, revocation, single address space, thread.

[PDF]

Cite: Lanfranco Lopriore, "Key-Lock Mechanisms for Object Protection in Single-Address-Space Systems," Journal of Computers vol. 4, no. 12, pp. 1322-1331, 2009.

General Information

ISSN: 1796-203X
Abbreviated Title: J.Comput.
Frequency: Bimonthly
Editor-in-Chief: Prof. Liansheng Tan
Executive Editor: Ms. Nina Lee
Abstracting/ Indexing: DBLP, EBSCO,  ProQuest, INSPEC, ULRICH's Periodicals Directory, WorldCat,etc
E-mail: jcp@iap.org
  • Nov 14, 2019 News!

    Vol 14, No 11 has been published with online version   [Click]

  • Mar 20, 2020 News!

    Vol 15, No 2 has been published with online version   [Click]

  • Dec 16, 2019 News!

    Vol 14, No 12 has been published with online version   [Click]

  • Sep 16, 2019 News!

    Vol 14, No 9 has been published with online version   [Click]

  • Aug 16, 2019 News!

    Vol 14, No 8 has been published with online version   [Click]

  • Read more>>