• DocumentCode
    2129567
  • Title

    An Approach Based on Model-Driven Engineering to Define Security Policies Using OrBAC

  • Author

    Munante, Denisse ; Gallon, Laurent ; Aniorte, Philippe

  • Author_Institution
    LIUPPA, Univ. of Pau, Anglet, France
  • fYear
    2013
  • fDate
    2-6 Sept. 2013
  • Firstpage
    324
  • Lastpage
    332
  • Abstract
    In the field of access control, many security breaches occur because of a lack of early means to evaluate if access control policies are adequate to satisfy privileges requested by subjects which try to perform actions on objects. This paper proposes an approach based on UMLsec, to tackle this problem. We propose to extend UMLsec, and to add OrBAC elements. In particular, we add the notions of context, inheritance and separation. We also propose a methodology for modeling a security policy and assessing the security policy modeled, based on the use of MotOrBAC. This assessment is proposed in order to guarantee security policies are well-formed, to analyse potential conflicts, and to simulate a real situation.
  • Keywords
    Unified Modeling Language; authorisation; software engineering; MotOrBAC; OrBAC elements; UMLsec; access control policy; model-driven engineering; security policy; Abstracts; Access control; Concrete; Context; Organizations; Unified modeling language; OrBAC; UMLsec; assessment of access control policies; model-driven security;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Availability, Reliability and Security (ARES), 2013 Eighth International Conference on
  • Conference_Location
    Regensburg
  • Type

    conf

  • DOI
    10.1109/ARES.2013.44
  • Filename
    6657260
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2129567