Implementation of a discretionary access control model for script-based systems

Trent Ray Jaeger, Atul Prakash

Research output: Contribution to journalArticlepeer-review

5 Scopus citations


Powerful applications can be implemented using command scripts. A command script is a program written by one user, called a writer, and made available to another user, called the reader, who executes the script. For instance, command scripts could be used by Mosaic, the popular World-wide Web browsing tool, to provide fancy interfaces to services, such as banking, shopping, etc. However, the use of command scripts presents a serious security problem. A command script is run with the reader's access rights, so a writer can use a command script to gain unauthorized access to the reader's data and applications. Existing solutions to the problem either severely restrict I/O capability of scripts, limiting the range of applications that can be supported, or permit all I/O to scripts, potentially compromising the security of the reader's data. We define a discretionary access control model that permits users to flexibly limit the access rights of the processes that execute a command script. We use this model in a prototype system that safely executes command scripts available from Mosaic.

Original languageEnglish (US)
Pages (from-to)70-84
Number of pages15
JournalProceedings. The Computer Security Foundations Workshop III
StatePublished - 1995

All Science Journal Classification (ASJC) codes

  • Software


Dive into the research topics of 'Implementation of a discretionary access control model for script-based systems'. Together they form a unique fingerprint.

Cite this