A framework for modelling restricted delegation of rights in the SECTET

Computer Systems Science and Engineering

Volumn 22, Issue 5, 2007, Pages 289-305

  Alam, Muhammad ^a   Hafner, Michael ^a   Breu, Ruth ^a   Unterthiner, Stefan ^a  

^a UNIVERSITY OF INNSBRUCK   (Austria)

Author keywords

Delegation of rights; Domain specific language; Model driven architecture; Model driven engineering; Service oriented architecture

Indexed keywords

ACCESS CONTROL; DYNAMIC MODELS; MODEL PREDICTIVE CONTROL; PUBLIC POLICY;

DELEGATION OF RIGHTS; DOMAIN SPECIFIC LANGUAGE; MODEL DRIVEN ARCHITECTURE; MODEL DRIVEN ENGINEERING; SERVICE ORIENTED ARCHITECTURE;

WEB SERVICES;

EID: 38949134784     PISSN: 02676192     EISSN: None     Source Type: Journal    
DOI: None     Document Type: Article

References (49)

1. M. Alam et al, "Modeling Permissions in a (U/X)ML World," in IEEE ARES 2006, ISBN: 0-7695-2567-9.
2. X. Zhang and S. Oh and R. Sandhu, "PBDM: A Flexible Delegation Model in RBAC," sACMAT 03, Italy ACM 1-58113-681-1/03/0006.
3. "OASIS Organization for the Advancement of Structured Information Standards," www.oasis-open.org.
4. "XACML v3.0 administration policy Working Draft 05 December 2005," http://www.oasis-open.org/committees/documents.php?wg_abbrev=xacml.
5. "Object Management Group," http://www.omg.org.
6. "Model Driven Architecture," http://www.omg.org/mda.
7. S. Brahe and K. Osterbye, "Business Process Modeling: Defining Domain Specific Modeling Languages by Use of UML Profiles," ECMDA-FA 2006, LNCS 4066, pp.241-255, 2006.
8. R. Breu et al, "Web service engineering - advancing a new software engineering discipline," ICWE 2005, LNCS 3579 Springer 2005.
9. R. Breu and G. Popp and M. Alam, "Model Based Developement of Access Policies," submitted.
10. M. Hafner et al., "A Security Architecture For Inter-organizational Workflows-Putting WS Security Standards Together," iCEIS 2005,ISBN: 972-8865-19-8.
11. R. Breu et al, "Model Driven Security for Inter-Organizational Workflows in e-Government," TCGOV 2005,Proceedings. ISBN 3-540-25016-6.
12. M. Alam et al, "Model Driven Security for Web Services (MDS4WS)" INMIC 2004,Digi Obj Id 10.1109/IN-MIC.2004.1492930.
13. M. Hafner et al, "Modeling Inter-organizational Workflow Security in a Peer-to-Peer Environment," IEEE ICWS 2005,ISBN: 0-7695-2409-5.
14. R. France, B. Rumpe, "Domain Specific Modeling," editorial of Software System Model Journal 2005.
15. "Meta Object Facility: OMG Adapted Specification available at," http://www.omg.org/docs/ptc/04-10-15.pdf.
16. K. Balaubramanian et al, "Developing Applications Using Model-Driven Design Environments," Cover Feature, Published by IEEE Computer Society 2006.
17. M. Hafner et al, "SECTET - An Extensible Framework for the Realization of Secure Inter-Organizational Workflows," Accepted for ICEIS 2006.
18. M. Alam, M. Hafner, and R. Breu, "Modeling Authorization in a SOA based Distributed Workflow," iASTED Software Engineering 2006, ISBN: 0-88986-572-8.
19. M. Hafner, M. Alam, R. Breu, "A MOF/QVT-based Domain Architecture for Model Driven Security," Appeared in IEEE/ACM Models 2006 LNCS 4199.
20. Role Based Access Control avialable at, csrc.nist.gov/rbac/.
21. SECTETPL : A Predicative Language for the Specification of Access Rights available at, http://qe-informatik.uibk.ac.at/~muhammad/TechnicalReportSECTETPL. pdf.
22. M. Alam, "Model-Driven Security Engineering for the realization of Dynamic Security Requirements in Collaborative Systems," Appeared in PhD Symposium of IEEE/ACM Models 2006 LNCS 4364.
23. "UML 2.0 OCL Specification," http://www.omg.org/docs/ptc/03-10- 14.pdf.
24. M. Alam et al, "A Framework for Modeling Restricted Delegation in Service Oriented Architecture," Proceedings of the Third International Conference on Trust, Privacy, and Security of Digital Business (TrustBus06), LNCS 4083, Springer, ISBN 0302-9743, 246pp, 2006.
25. An introduction to Model Driven Architecture, http://www-128.ibm.eom/ developerworks/rational/library/3100.html.
26. Query View Transformation: OMG Adapted Specification available at, http://www.omg.org/docs/ptc/05-11-01.pdf.
27. http://www.antlr.org.
28. M. Alam, M. Hafner, and R. Breu, "A Constraint based Role Based Access Control in the SECTET A Model-Driven Approach," proceedings of the ACM PST 2006 - International Conference on Privacy, Security and Trust, October 30th, 2006 - November 1 st, 2006.
29. "Shiboleth protocols and profiles: August 2005," http://shibboleth.internet2.edu/shib-intro.html.
30. A. introduction to UML Profiles, http://www.sparxsystems.com/resources/ developers/uml_profiles.html.
31. Web Service Description Language (WSDL), available at, http://www.w3.org/TR/wsdl.
32. "WSDL First, July 22, 2003," http://webservices.xml.com/pub/a/ ws/2003/07/22/wsdlfirst.html.
33. M. Alam, M. Hafner, and R. Breu, "Constraint based Role Based Access Control for modelling administrative constraints in the SECTET," proceedings of the ACM PST 2006 - International Conference on Privacy, Security and Trust, October 30th, 2006 -November 1st, 2006.
34. E. Yuan and J. Tong, "Attributed Based Access Control (ABAC) for Web Services," iEEE ICWS 2005,ISBN 0-7695-2409-5.
35. http://wikipedia.org/.
36. R. Sandhu and Q. Munawer, "The ARBAC99 Model for Administration of Roles," acsac, p. 229, 15th Annual Computer Security Applications Conference (ACSAC '99),1999.
37. F. Cuppens and A. Miège, "Administration Model for Or-BAC," in Computer Systems Science and Engineering (CSSE'04), vol. 19, no. 3, May, 2004.
38. "XACML 2.0 Specification Set," http://www.oasis-open.org/ committees/tc_home.php?wg_abbrev=xacml.
39. "SAML 2.0 Specification," http://www.oasis-open.org/ committees/tc_home.php?wg_abbrev=security.
40. G. Yin et al., "Trust Management with Safe Privilege Propagation," aPPT 2005, LNCS 3756,pp. 174-183,2005.
41. N. Li and J. Mitchell, "RT: A role-based trust-management framework," 2003, citeseer.ist.psu.edu/li03rt.html.
42. W. Jiang et al., "Using Trust for Restricted Delegation in Grid Envoirnments," iSPEC 2005, LNCS 3439,pp.293-301,2005.
43. M. Blaze et al., "The KeyNote Trust-Management System," rFC 2704, Sept. 1999.
44. H. Lee et al., "A New Role-Based Delegation Model Using Sub-role Hierarchies," iSCIS 2003,LNCS 2869,pp.811-818,2003.
45. C. Ye and Z. Wu, "Attributed-Based Delegation Model and its Extension," journal of Research and Practise in Information Technology, Vol 38, No. 1, Februrary 2006.
46. L. Zhang et al., "A Rule-Based Framework for Role-Based Delegation," aCM Transactions on Information System Security, Vol 6, No. 3 August 2003, Pages 404-441.
47. K. Stoupa et al., "XML-Based Revocation and Delegation in a Distributed Environment," eDBT 2004 workshops LNCS 3268, pp. 299-308.
48. S. Kim et al., "Wokflow-based Authorization," journal of Grid Computing 2004 Kluwer Publishers, Netharland.
49. J Wang et al., "Extending the SAML to Support Delegation for Web Services and Grid Services," iEEE ICWS 2005,ISBN: 0-7695-2409-5.