A formal enforcement framework for role-based access control using aspect-oriented programming

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3713 LNCS, Issue , 2005, Pages 537-552

  Pavlich Mariscal, Jaime ^a   Michel, Laurent ^a   Demurjian, Steven ^a  

^a University of Connecticut   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

ASPECT-ORIENTED PROGRAMMING; AUTOMATIC TRANSLATION; MANDATORY ACCESS CONTROL; ROLE-BASED ACCESS CONTROL; UNIFIED MODELING LANGUAGE;

COMPUTER SIMULATION; COMPUTER SOFTWARE; ELECTRONIC DOCUMENT IDENTIFICATION SYSTEMS; SECURITY SYSTEMS;

OBJECT ORIENTED PROGRAMMING;

EID: 33646186281     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/11557432_41     Document Type: Conference Paper

References (23)

1. Bell, D., LaPadula, L.: Secure computer systems: Mathematical foundations model. Technical report, Mitre Corporation (1975)
2. Biba, K.: Integrity considerations for secure computer systems. Technical report, Mitre Corporation (1977)
3. DoD: Trusted Computer System Evaluation Criteria. 5200.28-STD. DoD (1985)
4. Ting, T.C.: A user-role based data security approach. In Landwehr, C., ed.: Database Security: Status and Prospects. (1988)
5. Sandhu, R.S., Coyne, E.J., Feinstein, H.L., Youman, C.E.: Role-based access control models. IEEE Computer 29 (1996) 38-47
6. Ferraiolo, D.F., Sandhu, R., Gavrila, S., Kuhn, D.R., Chandramouli, R.: Proposed NIST standard for role-based access control. ACM Trans. Inf. Syst. Secur. 4 (2001) 224-274
7. Doan, T., Demurjian, S., Ting, T., Phillips, C.: RBAC/MAC security for UML. In Farkas, C., Samarati, P., eds.: Research Directions in Data and Applications Security XVIII. (2004)
8. Doan, T., Demurjian, S., Ting, T., Ketterl, A.: MAC and UML for secure software design. In: Proc. of 2nd ACM Wksp. on Formal Methods in Security Engineering, Washington D.C. (2004)
9. Doan, T., Demurjian, S., Ammar, R., Ting, T.: UML design with security integration as a first class citizen. In: Proc. of 3rd Intl. Conf. on Computer Science, Software Engineering, Information Technology, e-Business, and Applications (CSITeA'04), Cairo (2004)
10. Pavlich-Mariscal, J.A., Doan, T., Michel, L., Demurjian, S.A., Ting, T.C.: Role slices: A notation for rbac permission assignment and enforcement. In: Proceedings of 19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security. (2005)
11. Clarke, S.: Composition of object-oriented software design models. PhD thesis, Dublin City University (2001)
12. Plotkin, G.: A Structural Approach to Operational Semantics. Technical Report DAIMI FN-19, CS Department, University of Aarhus (1981)
13. Ferraiolo, D., Kuhn, R.: Role-based access controls. In: 15th NIST-NCSC National Computer Security Conference. (1992) 554-563
14. Sandhu, R., Ferraiolo, D., Kuhn, R.: The NIST model for role-based access control: Towards a unified standard. (2000) 47-64
15. Demurjian, S.A., Ting, T.C.: Towards a definitive paradigm for security in object-oriented systems and applications. Journal of Computer Security 5 (1997)
16. Phillips, C., Demurjian, S., Ting, T.: Security assurance for an rbac/mac security model. In: Proc. of 2003 IEEE Info. Assurance Workshop, West Point, NY (2003)
17. Phillips, C., Demurjian, S., Ting, T.C.: Safety and liveness for an rbac/mac security model. In di Vimercati, S., Ray, I., eds.: Database and Applications Security XVII: Status and Prospects. (2004)
18. AspectJ-Team: The aspectj programming guide, http://dev.eclipse.org/ viewcvs/indextech.cgi/checkout/aspectj-home/doc/progguide/index.html (2003)
19. Song, E., Reddy, R., France, R., Ray, I., Georg, G., Alexander, R.: Verifiable composition of access control features and applications. In: Proceedings of 10th ACM Symposium on Access Control Models and Technologies (SACMAT 2005). (2005)
20. Win, B.D., Vanhaute, B., Decker, B.D.: Security through aspect-oriented programming. In: Proceedings of the IFIP TC11 WG11.4 First Annual Working Conference on Network Security, Kluwer, B.V. (2001) 125-138
21. Wand, M., Kiczales, G., Dutchyn, C.: A semantics for advice and dynamic join points in aspect-oriented programming. In Leavens, G.T., Cytron, R., eds.: FOAL 2002 Proceedings. (2002)
22. Epstein, P., Sandhu, R.: Towards a uml based approach to role engineering. In: Proceedings of the fourth ACM workshop on Role-based access control. (1999) 135-143
23. Basin, D., Doser, J., Lodderstedt, T.: Model driven security, Engineering Theories of Software Intensive Systems. (2004)