class-based access control VS instance-based access control

X

xz

Why C++ (as well as Java) adopts class-based access control instead of
instance-based access control?

I had never paid attention to whether an access-control is class-based
or instance-based but only intuitively thought that the latter was the
one being used.

Since it does not seem to make sense to let an instance "a1" of Class
"A" to have access to the private data of instance "a2" of the same
Class A, does it?
 
V

Victor Bazarov

xz said:
Why C++ (as well as Java) adopts class-based access control instead of
instance-based access control?
Click to expand...

Mostly because of the different purpose of those. Class-based has the
purpose to prevent coding mistakes, whereas instance-based looks like
a security measure. C++ wasn't designed with security in mind.
I had never paid attention to whether an access-control is class-based
or instance-based but only intuitively thought that the latter was the
one being used.

Since it does not seem to make sense to let an instance "a1" of Class
"A" to have access to the private data of instance "a2" of the same
Class A, does it?
Click to expand...

That's an incomplete statement. Since it doesn't, then what? What
conclusion do you expect to derive from "since it doesn't make sense"?
And think of the fact that it doesn't make sense to you, but obviously
makes a lot of sense to millions of other C++ programmers who never
complain about that feature. What does it say?

V
 
X

xz

Thanks for you reply.
Mostly because of the different purpose of those. Class-based has the
purpose to prevent coding mistakes, whereas instance-based looks like
a security measure. C++ wasn't designed with security in mind.
Click to expand...

I thought the access control was designed in the purpose for
security......
And it is obviously a danger to let "a1" (of class A) to have access
to the private data of "a2".
If you wanna control the privileges of accesses from the outside
world, it's straightforward that any access from outside should be
controlled, whether it is from an instance of different class or the
same class.
Well, but you said class-based is not for security......
 
X

xz

Mostly because of the different purpose of those. Class-based has the
purpose to prevent coding mistakes, whereas instance-based looks like
a security measure. C++ wasn't designed with security in mind.
Click to expand...
Then how about Java?
 
X

xz

No, thanks.
Click to expand...
So you are a fan of tea? :)

OK, let's ask it seriously.
I think Java (the programming language provided by Sun, which is a
company instead of the shining sun in the sky) was designed "with
security in mind", then why Java's access control is also class-based
instead of instance-based?
 
V

Victor Bazarov

xz said:
So you are a fan of tea? :)

OK, let's ask it seriously.
I think Java (the programming language provided by Sun, which is a
company instead of the shining sun in the sky) was designed "with
security in mind", then why Java's access control is also class-based
instead of instance-based?
Click to expand...

Why are you asking about Java in a C++ newsgroup? The only answer
to your question here is "who cares?"

V
 
G

Grizlyk

xz said:
And it is obviously a danger to let "a1" (of class A)
to have access to the private data of "a2".
Click to expand...

Try to write a copy ctor and assignment operator for your class A.

Probably, access to the private data of object of the same class can
be disabled by default, and a kind of static_cast<> will exist to
explicitly change type of reference to enabled.

But what the errors and where have you met already with the access is
enabled by default?

Maksim A. Polyanin
old page about some C++ improvements:
http://grizlyk1.narod.ru/cpp_new
 
S

Salt_Peter

Thanks for you reply.


I thought the access control was designed in the purpose for
security......
And it is obviously a danger to let "a1" (of class A) to have access
to the private data of "a2".
If you wanna control the privileges of accesses from the outside
world, it's straightforward that any access from outside should be
controlled, whether it is from an instance of different class or the
same class.
Well, but you said class-based is not for security......
Click to expand...

You have a serious misconception about access control and instances. A
class is a blueprint. Its a specification of what an instance will
look like and the interface an instance will have if and only if you
actually make one. You can't apply encapsulation to an instance
without first designing the model.

Our world works the same way. You buy a home that has a private
bathroom, your neighbour has the identical house. Does your neighbour
have access to your private bathroom because he has access to his? If
he flushes the toilet, does yours go too? Would making the bathroom
public change that? If you push the accelerator in your car, do all
the other cars on the road accelerate as well? Give all your
neighbours the key to your car and try pushing the accelerator again,
do the neighbour's cars accelerate too (are they even running)?

You and your neighbour share the same water reservoir/treatment plant.
If it breaks down, both you and your neighbour lose your water source
(the water plant is static, unique in your area - a translation unit).
It too is an instance of a water plant, although unique in your
sector. If you manage to bypass security and decide to bathe in that
water, does that mean that your body is simultaneously bathing in
every water plant this world has? Hmm?

Meanwhile: an instance is just an instance. An apple is just another
apple. You are just another person. The only thing these pairs of
entities have in common is their type.

If you do something silly and you end up in prison, thats not
encapsulation either, its Storage (you were placed in a secured
container). Its really a very simple concept. Just look around you.
 
J

James Kanze

Why C++ (as well as Java) adopts class-based access control instead of
instance-based access control?
Click to expand...

Because you couldn't implement copy construction otherwise. If
a language supports value semantics for user defined types, it
pretty much has to use class based access control.
I had never paid attention to whether an access-control is
class-based or instance-based but only intuitively thought
that the latter was the one being used.
Click to expand...
Since it does not seem to make sense to let an instance "a1"
of Class "A" to have access to the private data of instance
"a2" of the same Class A, does it?
Click to expand...

And how do you implement a copy constructor otherwise?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Camera Access Project 1
Python vs "Low Code" solutions for SaaS development 0
Access data from an inner class 10
Access to private data type of an outer class from inner class 2
Access control of derived class 1
Problem to access singleton class object. 3
Cannot access protected from base class? 8
Template cannot access its own protected members? huh? 8

Members online

No members online now.
Total: 41 (members: 0, guests: 41)
Robots: 481

Forum statistics

Threads
473,769
Messages
2,569,580
Members
45,055
Latest member
SlimSparkKetoACVReview

Latest Threads

Top