Proceedings Article10.1109/ENABL.2001.953406
Role-based authorization constraints specification using Object Constraint Language
Gail-Joon Ahn,Michael E. Shin +1 more
- 20 Jun 2001
- pp 157-162
TL;DR: The authors use a declarative language, Object Constraint Language (OCL) that is part of the Unified Modeling Language (UML) and has been used in object oriented analysis and design and describes how to specify previously identified role-based authorization constraints.
read more
Abstract: The purpose of access control is to limit the actions on a computer system that a legitimate user can perform. Role-based access control (RBAC) has generated great interest in the security community as a flexible approach in access control. An important aspect of RBAC is constraints that constrain what components in RBAC are allowed to do. Although researchers have identified useful constraints using formal specification languages such as RCL2000, there still exists a demand to have constraint specification languages for system developers who are working on secure systems development. The authors discuss another approach to specifying constraints using a de facto constraint specification language in the software engineering arena. We use a declarative language, Object Constraint Language (OCL) that is part of the Unified Modeling Language (UML) and has been used in object oriented analysis and design. We describe how to specify previously identified role-based authorization constraints, and the future direction of this work is also addressed.
read more
Chat with Paper
AI Agents for this Paper
Find similar papers on Google Scholar, PubMed and Arxiv
Write a critical review of this paper
Analyze citations of this paper to find unaddressed research gaps
Citations
Modeling contextual security policies
TL;DR: This paper presents a taxonomy of different types of context and investigates the data the information system must manage in order to deal with these different contexts and explains how to model and evaluate them in the OrBAC model.
150
Modelling contexts in the Or-BAC model
Frédéric Cuppens,A. Miege +1 more
- 08 Dec 2003
TL;DR: This work presents a taxonomy of different types of context and investigates the data the information system must manage in order to deal with these different contexts and explains how to model them in the Or-BAC model.
Automated analysis of security-design models
TL;DR: This work shows how to automate the analysis of security-design models in a semantically precise and meaningful way, and demonstrates, through examples, that this approach can be used to formalize and check non-trivial security properties.
Modeling process-related RBAC models with extended UML activity models
Mark Strembeck,Jan Mendling +1 more
TL;DR: The definition of process-related RBAC models at the modeling-level is an important prerequisite for the thorough implementation and enforcement of corresponding policies and constraints in a software system.
Using aspects to design a secure system
Geri Georg,Indrakshi Ray +1 more
- 02 Dec 2002
TL;DR: It is illustrated how an aspect-oriented approach to modeling allows developers to encapsulate design concerns so that they can be woven into a design in a systematic and consistent manner.
113
References
Role-based access control models
TL;DR: Why RBAC is receiving renewed attention as a method of security administration and review is explained, a framework of four reference models developed to better understandRBAC is described, and the use of RBAC to manage itself is discussed.
6.1K
•Book
The unified modeling language reference manual
James Rumbaugh,Ivar Jacobson,Grady Booch +2 more
- 01 Dec 1998
TL;DR: This title provides expert knowledge on all facets of today's UML standard, helping developers who are encountering UML on the job for the first time to be more productive.
4.9K
•Book
The Unified Modeling Language
Martin Schader,Axel Korthaus +1 more
- 15 Oct 1998
TL;DR: This paper gives an overview about the development and present state of EIAlCDIF, the metametamodel underlying all of CDIF's metamodels, the proposed mapping of the UML meta-metamodle to the CDIF meta- MetamodEL as well as the officially submitted proposal for a CDIF UML-metAModel.
1K
•Book
Role-Based Access Controls
David F. Ferraiolo,D. Richard Kuhn +1 more
- 13 Oct 1992
TL;DR: RBAC as discussed by the authors uses RBAC to implement Military Policies and Integrates RBAC with Existing Infrastructure, using role hierarchies and role-based role-role hierarchies to implement military policies.
700