Model-driven adaptive delegation

AOSD 2013 - Proceedings of the 2013 ACM on Aspect-Oriented Software Development

Volumn , Issue , 2013, Pages 61-72

  Nguyen, Phu H ^a   Nain, Gregory ^a   Klein, Jacques ^a   Mouelhi, Tejeddine ^a   Traon, Yves Le ^a  

^a UNIVERSITY OF LUXEMBOURG   (Luxembourg)

Author keywords

Access control; Delegation; Dynamic adaptation; Model composition; Model driven engineering; Model driven security

Indexed keywords

DELEGATION; DYNAMIC ADAPTATIONS; MODEL COMPOSITION; MODEL-DRIVEN ENGINEERING; MODEL-DRIVEN SECURITIES;

COMPUTER SYSTEMS PROGRAMMING; DYNAMICS; SEMANTICS;

ACCESS CONTROL;

EID: 84875987068     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2451436.2451445     Document Type: Conference Paper

References (27)

1. G.-J. Ahn, B. Mohan, and S.-P. Hong. Towards secure information sharing using role-based delegation. J. Netw. Comput. Appl., 30(1):42{59, Jan. 2007.
2. E. Barka and R. Sandhu. Role-based delegation model/hierarchical roles (rbdm1). In Proceedings of the 20th Annual Computer Security Applications Conference, ACSAC '04, pages 396{404, Washington, DC, USA, 2004. IEEE Computer Society.
3. S. Barker and M. Fernández. Term rewriting for access control. In DBSec, pages 179{193, 2006.
4. D. Basin and J. Doser. Model driven security: From UML models to access control infrastructures. ACM Transactions on Software, (1945):353{398, 2006.
5. M. Ben-Ghorbel-Talbi, F. Cuppens, N. Cuppens-Boulahia, and A. Bouhoula. A delegation model for extended rbac. Int. J. Inf. Secur., 9(3):209{236, June 2010.
6. E. Bertino, S. Jajodia, and P. Samarati. A exible authorization mechanism for relational data management systems. ACM Trans. Inf. Syst., 17(2):101{140, 1999.
7. C. Bertolissi, M. Fernández, and S. Barker. Dynamic event-based access control as term rewriting. In DBSec, pages 195{210, 2007.
8. E. Bruneton, T. Coupaye, M. Leclercq, V. Quéma, and J. Stefani. The FRACTAL Component Model and its Support in Java. Software Practice and Experience, Special Issue on Experiences with Auto-adaptive and Reconfigurable Systems, 36(11-12):1257{1284, 2006.
9. J. Crampton and H. Khambhammettu. Delegation in role-based access control. Int. J. Inf. Sec., 7(2):123{136, 2008.
10. T. Doan, S. Demurjian, T. C. Ting, and A. Ketterl. Mac and uml for secure software design. In FMSE '04: Proceedings of the 2004 ACM workshop on Formal methods in security engineering, pages 75{85, New York, NY, USA, 2004. ACM.
11. S. Jajodia, P. Samarati, M. L. Sapino, and V. S. Subrahmanian. Flexible support for multiple access control policies. ACM Trans. Database Syst., 26(2):214{260, 2001.
12. J. Jürjens. UMLsec: Extending UML for Secure Systems Development. In UML'02: 5th International Conference on The UML, pages 412{425, Dresden, Germany, 2002. Springer-Verlag.
13. D.-K. Kim, I. Ray, R. B. France, and N. Li. Modeling role-based access control using parameterized uml models. In FASE, pages 180{193, 2004.
14. B. Klatt. Xpand: A closer look at the model2text transformation language. Language, (10/16/2008), 2007.
15. T. Lodderstedt, D. Basin, and J. Doser. SecureUML: A UML-Based Modeling Language for Model-Driven Security. In UML'02: 5th International Conference on The UML, pages 426{441, Dresden, Germany, 2002. Springer-Verlag.
16. W. Meier. exist: An open source native xml database. In Web-Services, and Database Systems, NODe 2002 Web and Database-Related Workshops, pages 169{183. Springer, 2002.
17. B. Morin, O. Barais, J.-M. Jezequel, F. Fleurey, and A. Solberg. Models@ run.time to support dynamic adaptation. Computer, 42(10):44{51, Oct. 2009.
18. B. Morin, O. Barais, G. Nain, and J. Jzéquel. Taming Dynamically Adaptive Systems with Models and Aspects. In ICSE'09: 31st International Conference on Software Engineering, Vancouver, Canada, May 2009.
19. B. Morin, F. Fleurey, N. Bencomo, J.-M. Jézéquel, A. Solberg, V. Dehlen, and G. Blair. An aspect-oriented and model-driven approach for managing dynamic variability. In Proceedings of the 11th international conference on Model Driven Engineering Languages and Systems, MoDELS '08, pages 782{796, Berlin, Heidelberg, 2008. Springer-Verlag.
20. B. Morin, T. Mouelhi, F. Fleurey, Y. Le Traon, O. Barais, and J.-M. J-ez-equel. Security-driven model-based dynamic adaptation. In Proceedings of the IEEE/ACM international conference on Automated software engineering, ASE '10, pages 205{214, New York, NY, USA, 2010. ACM.
21. T. Mouelhi, Y. L. Traon, and B. Baudry. Transforming and selecting functional test cases for security policy testing. In Proceedings of the 2009 International Conference on Software Testing Veri-cation and Validation, ICST '09, pages 171{180, Washington, DC, USA, 2009. IEEE Computer Society.
22. P.-A. Muller, F. Fleurey, and J.-M. Jézéquel. Weaving executability into object-oriented meta-languages. In International Conference on Model Driven Engineering Languages and Systems (MoDELS), LNCS 3713, pages 264{278. Springer, 2005.
23. S. Na and S. Cheon. Role delegation in role-based access control. In Proceedings of the fifth ACM workshop on Role-based access control, RBAC '00, pages 39{44, New York, NY, USA, 2000. ACM.
24. R. Sandhu and J. Park. Usage control: A vision for next generation access control. V. Gorodetsky et al. (Eds.): MMM-ACNS 2003, LNCS 2776, 1:17{31, 2003.
25. R. S. Sandhu, E. J. Coyne, H. L. Feinstein, and C. E. Youman. Role-based access control models. Computer, 29(2):38{47, Feb. 1996.
26. O. The OSGi Alliance. Osgi service platform core specification, release 4.1. 2007.
27. X. Zhang, S. Oh, and R. Sandhu. Pbdm: a exible delegation model in rbac. In Proceedings of the eighth ACM symposium on Access control models and technologies, SACMAT '03, pages 149{157, New York, NY, USA, 2003. ACM.