Role-based access control provides a very exible set of mechanisms for managing the access control of a complex system with many users, objects and applications. The role graph model of Nyanchama and Osborn is one example of how role administration algorithms can be implemented. In our previous research, we have also shown how the access control information of existing systems can be extracted and represented as a role graph. In this paper, we extend this research by showing how, when two systems are being integrated, their role graphs can also be integrated.

: In the past two years, Java has exploded onto the computing landscape, offering an object-oriented language and environment that is suitable for a wide variety of application domains. Java is targeted for applications that include: advanced capabilities in WWW browsers via applets; enterprise computing with database connectivity, CORBA, and RMI; usage in personal, commercial, and consumer market products; embedded computing applications with real-time constraints; and, smart card technology. Security is an integral component of many of these applications, to control access and prevent misuse. The purpose of this chapter is to focus on the security capabilities and potentials of Java. There must be an understanding of the available security primitives in Java, an investigation of the ability of Java to support existing object-oriented security approaches, and a consideration of potential security solutions for distributed object computing applications. 1.1 INTRODUCTION T...