Presentation is loading. Please wait.

Presentation is loading. Please wait.

Application Code PDP PEP public void borrowBook (User user, Book book, Context context) throws PolicyViolationException { Request request = new Request.

Published byRodney Shepherd Modified over 8 years ago

Similar presentations

Presentation on theme: "Application Code PDP PEP public void borrowBook (User user, Book book, Context context) throws PolicyViolationException { Request request = new Request."— Presentation transcript:

1

2 Application Code PDP PEP public void borrowBook (User user, Book book, Context context) throws PolicyViolationException { Request request = new Request execute(user.getRole(), "BORROW", "BOOK", context); // Subject, Action, Resource, Context String decision = executePDP (request ); if (decision.equals (“Deny”){ thorws new PolicyViolationException (“Deny”)} else if (decision.equals (“Undefined”)) thorws new PolicyViolationException (“Undefined”)} else if (decision.equals (“Permit”){ // borrow Book process if decision is Permitted … // code here to borrow book … } } public void borrowBook (User user, Book book, Context context) throws PolicyViolationException { Request request = new Request execute(user.getRole(), "BORROW", "BOOK", context); // Subject, Action, Resource, Context String decision = executePDP (request ); if (decision.equals (“Deny”){ thorws new PolicyViolationException (“Deny”)} else if (decision.equals (“Undefined”)) thorws new PolicyViolationException (“Undefined”)} else if (decision.equals (“Permit”){ // borrow Book process if decision is Permitted … // code here to borrow book … } } private void doBorrowInHolidaysWithUser() { String user = UserGetInstance(“ID”, “BORROWER”); Context context = ContextGetInstance("holidays"); Book book = new Book(); book1.setTitle("JAVA programming"); book1.setAuthor("James So"); // test borrow books in holidays try { bookService.borrowBook(user, book, context); // if we go here then failure fail("Book is borrowed by BORROWER during holidays"); } catch (Exception e) { fail(e.getMessage()); } // proceed if book is borrowed by BORROWER.... } private void doBorrowInHolidaysWithUser() { String user = UserGetInstance(“ID”, “BORROWER”); Context context = ContextGetInstance("holidays"); Book book = new Book(); book1.setTitle("JAVA programming"); book1.setAuthor("James So"); // test borrow books in holidays try { bookService.borrowBook(user, book, context); // if we go here then failure fail("Book is borrowed by BORROWER during holidays"); } catch (Exception e) { fail(e.getMessage()); } // proceed if book is borrowed by BORROWER.... } Test Case Code private void doBorrowInHolidaysWithUser() { User user = UserGetInstance(“ID”, “BORROWER”); Context context = ContextGetInstance("holidays"); Book book = new Book(); book1.setTitle("JAVA programming"); book1.setAuthor("James So"); // test borrow books in holidays try { bookService.borrowBook(user, book, context); // if we go here then failure fail("Book is borrowed by BORROWER during holidays"); } catch (Exception e) { fail(e.getMessage()); } // proceed if book is borrowed by BORROWER.... } Request: “ BORROWER ” is permitted to borrow book during holidays Request: “ BORROWER ” is permitted to borrow book during holidays Response: Permit or Deny Policy P Request Respons e

3 Methods Application Code PDP PEPs Policy P SubjectContext Test Case Code 1 2 3

4 Security Test Cases Functional Test Cases System Test Cases

5 Policy P Policy-based Software Application T Policy P' Policy Changes Test Selection Test Augmentation T' T'' T' + Different Behaviors

Download ppt "Application Code PDP PEP public void borrowBook (User user, Book book, Context context) throws PolicyViolationException { Request request = new Request."

Similar presentations

1 Exceptions: An OO Way for Handling Errors Rajkumar Buyya Grid Computing and Distributed Systems (GRIDS) Laboratory Dept. of Computer Science and Software.

1 Exceptions: An OO Way for Handling Errors Rajkumar Buyya Grid Computing and Distributed Systems (GRIDS) Laboratory Dept. of Computer Science and Software.
If Statements, Try Catch and Validation. The main statement used in C# for making decisions depending on different conditions is called the If statement.

If Statements, Try Catch and Validation. The main statement used in C# for making decisions depending on different conditions is called the If statement.
Chapter 16 Exception Handling. What is Exception Handling? A method of handling errors that informs the user of the problem and prevents the program from.

Chapter 16 Exception Handling. What is Exception Handling? A method of handling errors that informs the user of the problem and prevents the program from.
Building Secure Distributed Systems The CIF model : Component Information Flow Lilia Sfaxi DCS Days - 26/03/2009.

Building Secure Distributed Systems The CIF model : Component Information Flow Lilia Sfaxi DCS Days - 26/03/2009.
The Substitution Principle SWE 332 – Fall 2010. 2 Liskov Substitution Principle In any client code, if subtype object is substituted for supertype object,

The Substitution Principle SWE 332 – Fall Liskov Substitution Principle In any client code, if subtype object is substituted for supertype object,
Problem Solving 5 Using Java API for Searching and Sorting Applications ICS-201 Introduction to Computing II Semester 071.

Problem Solving 5 Using Java API for Searching and Sorting Applications ICS-201 Introduction to Computing II Semester 071.
1 Authorization XACML – a language for expressing policies and rules.

1 Authorization XACML – a language for expressing policies and rules.
APPLICATION DEVELOPMENT SECURE CODING WORKSHOP JIM MANICO VP, Security Architecture MARCH 2013.

APPLICATION DEVELOPMENT SECURE CODING WORKSHOP JIM MANICO VP, Security Architecture MARCH 2013.
Exception Handling – illustrated by Java mMIC-SFT November 2003 Anders P. Ravn Aalborg University.

Exception Handling – illustrated by Java mMIC-SFT November 2003 Anders P. Ravn Aalborg University.
Written by: Dr. JJ Shepherd

Written by: Dr. JJ Shepherd
Lecture 9. 2 Exception  An exception is a unusual, often unpredictable event, detectable by software or hardware, that requires special processing occurring.

Lecture 9. 2 Exception  An exception is a unusual, often unpredictable event, detectable by software or hardware, that requires special processing occurring.
Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.

Administrative Policies in XACML Erik Rissanen Swedish Institute of Computer Science.
15-May-15 RMI Remote Method Invocation. 2 “The network is the computer” Consider the following program organization: If the network is the computer, we.

15-May-15 RMI Remote Method Invocation. 2 “The network is the computer” Consider the following program organization: If the network is the computer, we.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Lecture 27 Exceptions COMP1681 / SE15 Introduction to Programming.

Lecture 27 Exceptions COMP1681 / SE15 Introduction to Programming.
Authz work in GGF David Chadwick

Authz work in GGF David Chadwick
XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.

XACML 2.0 and Earlier Hal Lockhart, Oracle. What is XACML? n XML language for access control n Coarse or fine-grained n Extremely powerful evaluation.
Exceptions Used to signal errors or unexpected situations to calling code Should not be used for problems that can be dealt with reasonably within local.

Exceptions Used to signal errors or unexpected situations to calling code Should not be used for problems that can be dealt with reasonably within local.
06 - Exceptions. 2 ©S. Uchitel, 2004 A familiar sight? Bluescreen.scr.

06 - Exceptions. 2 ©S. Uchitel, 2004 A familiar sight? Bluescreen.scr.
Web Site Security ISYS 512/812. Authentication Authentication is the process that determines the identity of a user. Web.config file – node Options: –Windows:

Web Site Security ISYS 512/812. Authentication Authentication is the process that determines the identity of a user. Web.config file – node Options: –Windows:

Similar presentations

Ads by Google