Skip to main content
SpringerLink
Log in
Book cover

International SDL Forum

SDL 2005: SDL 2005: Model Driven pp 16–31Cite as

An Access Control Language for Dynamic Systems – Model-Driven Development and Verification

  • Conference paper

Part of the book series: Lecture Notes in Computer Science ((LNCCN,volume 3530))

Abstract

Security is a crucial aspect in any modern software system. We consider access control as a concern in the sense of Aspect Oriented Programming and present a design language for access control aspects in distributed systems, called View Policy Language. The specification of the View Policy Language for a given application is integrated into a model-driven software engineering approach to support the designer throughout the entire software process. We give a graph-based formal semantics to the design models in order to reason about model transformations. In particular, we can formally ensure the preservation of model constraints in the transformation process, and hence prove the reusability of security aspects in dynamic models for different platforms.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Ahn, G.-J., Sandhu, R.: Role-Based Authorization Constraints Specification. ACM Transactions on Information and System Security 3(4), 207–226 (2000)

    Article  Google Scholar 

  2. Apache. Axis, http://ws.apache.org/axis/

  3. Brose, G.: Manageable Access Control for CORBA. Journal of Computer Security 4, 301–337 (2002)

    Google Scholar 

  4. Brose, G., Koch, M., Löhr, K.-P.: Integrating Access Control Design into the Software Development Process. In: Proc. of 6th International Conference on Integrated Design and Process Technology, IDPT (2002)

    Google Scholar 

  5. Brose, G.: Access Control Management in Distributed Object Systems. PhD thesis, Freie Universität Berlin (2001)

    Google Scholar 

  6. Brose, G.: Raccoon — An infrastructure for managing access control in CORBA. In: Proc. Int. Conference on Distributed Applications and Interoperable Systems (DAIS). Kluwer, Dordrecht (2001)

    Google Scholar 

  7. Ehrig, H., Heckel, R., Korff, M., Löwe, M., Ribeiro, L., Wagner, A., Corradini, A.: Handbook of Graph Grammars and Computing by Graph Transformations. Vol. I: Foundations, chapter Algebraic Approaches to Graph Transformation Part II: Single Pushout Approach and Comparison with Double Pushout Approach. In: Rozenberg [17] (1997)

    Google Scholar 

  8. Elrad, T., Filman, R., Bader, A.: Aspect-Oriented Programming. Communications of the ACM 44, 28–97 (2001)

    Google Scholar 

  9. Frankel, D.S.: Model Driven Architecture: Applying MDA to Enterprise Computing. John Wiley and Sons, Chichester (2003)

    Google Scholar 

  10. Jaeger, T., Tidswell, J.E.: Practical Safety in Flexible Access Control Models. ACM Transactions on Information and System Security 4(2), 158–190 (2001)

    Article  Google Scholar 

  11. Koch, M., Mancini, L.V., Parisi-Presicce, F.: A Graph Based Formalism for RBAC. ACM Transactions on Information and System Security (TISSEC) 5(3), 332–365 (2002)

    Article  Google Scholar 

  12. Koch, M., Mancini, L.V., Parisi-Presicce, F.: Conflict Detection and Resolution in Access Control Specifications. In: Nielsen, M., Engberg, U. (eds.) FOSSACS 2002. LNCS, vol. 2303, pp. 223–237. Springer, Heidelberg (2002)

    Chapter  Google Scholar 

  13. Koch, M., Pauls, K.: Model-driven Development of Access Control Aspects. In: Proc. of Sicherheit 2005, 2. GI-Jahrestagung Fachbereich Sicherheit (2005)

    Google Scholar 

  14. Lieberherr, K.J.: Controlling the Complexity of Software Designs. In: Proc. of 26th International Conference in Software Engineering, pp. 2–11 (2004)

    Google Scholar 

  15. Lopes, C.: Aspect-Oriented Software Development, chapter AOP: A Historical Perspective. Addison Wesley, London (2004)

    Google Scholar 

  16. OMG. Common Object Request Broker Architecture: Core Specification V.3.0.2 (December 2002)

    Google Scholar 

  17. Rozenberg, G. (ed.): Handbook of Graph Grammars and Computing by Graph Transformation, Foundations, vol. 1. World Scientific, Singapore (1997)

    Google Scholar 

  18. Sandhu, R., Ferraiolo, D., Kuhn, R.: The NIST Model for Role-Based Access Control: Towards A Unified Standard. In: Proc. of the 5th ACM Workshop on Role-Based Access Control. ACM, New York (2000)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Freie Universität Berlin, Berlin, Germany

    Manuel Koch & Karl Pauls

Authors
  1. Manuel Koch
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Karl Pauls
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Faculty of Engineering, Agder University College, Grooseveien 36, N-4876, Grimstad, Norway

    Andreas Prinz

  2. Telecommunications Software Engineering Limited, The Laurels, Victoria Road, LA23 2DL, Windermere, Cumbria, United Kingdom

    Rick Reed

  3. Telecommunications Software Engineering Limited, The Laurels, Victoria Road, LA23 2DL, Windermere, Cumbria, UK

    Jeanne Reed

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Koch, M., Pauls, K. (2005). An Access Control Language for Dynamic Systems – Model-Driven Development and Verification. In: Prinz, A., Reed, R., Reed, J. (eds) SDL 2005: Model Driven. SDL 2005. Lecture Notes in Computer Science, vol 3530. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11506843_2

Download citation

  • DOI: https://doi.org/10.1007/11506843_2

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-26612-9

  • Online ISBN: 978-3-540-31539-1

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation