The Object Filter and Access Control Framework Viviane Hays, Marc Loutrel, and Eduardo B. Fernandez * {vivvv | loutrelm@hotmail.com, ed@cse.fau.edu} Dept. of Computer Science and Eng. Florida Atlantic University Boca Raton, FL 33431 Abstract The amount of data available in the Internet is growing every day. It has become necessary to protect and filter out this data for institutional and legislative reasons. We assume here that data is stored as objects in a distributed environment where the objects need to be shared. This framework provides first client request authentication. In many distributed object systems, once authenticated a client can directly access objects in any way. The Object Filter and Access Control Framework avoids this by constraining a client to access objects in specified ways defined by the client rights.