Towards Integrated Modelling of Dynamic Access Control with UML and Event-B
Role-Based Access Control (RBAC) is a popular authorization model used to manage data-access constraints in a wide range of systems. RBAC usually defines the static view on the access rights. However, to ensure dependability of a system, it is often necessary to model and verify state-dependent acce...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Open Publishing Association
2018-05-01
|
| Series: | Electronic Proceedings in Theoretical Computer Science |
| Online Access: | http://arxiv.org/pdf/1805.05521v1 |
| id |
doaj-e424882f6d98421a8d0199532dee3b2f |
|---|---|
| record_format |
Article |
| spelling |
doaj-e424882f6d98421a8d0199532dee3b2f2020-11-25T02:32:45ZengOpen Publishing AssociationElectronic Proceedings in Theoretical Computer Science2075-21802018-05-01271Proc. IMPEX 2017 and FM&MDD 201710511610.4204/EPTCS.271.8:4Towards Integrated Modelling of Dynamic Access Control with UML and Event-BInna Vistbakka0Elena Troubitsyna1 Åbo Akademi Åbo Akademi Role-Based Access Control (RBAC) is a popular authorization model used to manage data-access constraints in a wide range of systems. RBAC usually defines the static view on the access rights. However, to ensure dependability of a system, it is often necessary to model and verify state-dependent access rights. Such a modelling allows us to explicitly define the dependencies between the system states and permissions to access and modify certain data. In this paper, we present a work-in-progress on combining graphical and formal modelling to specify and verify dynamic access control. The approach is illustrated by a case study – a reporting management system.http://arxiv.org/pdf/1805.05521v1 |
| collection |
DOAJ |
| language |
English |
| format |
Article |
| sources |
DOAJ |
| author |
Inna Vistbakka Elena Troubitsyna |
| spellingShingle |
Inna Vistbakka Elena Troubitsyna Towards Integrated Modelling of Dynamic Access Control with UML and Event-B Electronic Proceedings in Theoretical Computer Science |
| author_facet |
Inna Vistbakka Elena Troubitsyna |
| author_sort |
Inna Vistbakka |
| title |
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B |
| title_short |
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B |
| title_full |
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B |
| title_fullStr |
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B |
| title_full_unstemmed |
Towards Integrated Modelling of Dynamic Access Control with UML and Event-B |
| title_sort |
towards integrated modelling of dynamic access control with uml and event-b |
| publisher |
Open Publishing Association |
| series |
Electronic Proceedings in Theoretical Computer Science |
| issn |
2075-2180 |
| publishDate |
2018-05-01 |
| description |
Role-Based Access Control (RBAC) is a popular authorization model used to manage data-access constraints in a wide range of systems. RBAC usually defines the static view on the access rights. However, to ensure dependability of a system, it is often necessary to model and verify state-dependent access rights. Such a modelling allows us to explicitly define the dependencies between the system states and permissions to access and modify certain data. In this paper, we present a work-in-progress on combining graphical and formal modelling to specify and verify dynamic access control. The approach is illustrated by a case study – a reporting management system. |
| url |
http://arxiv.org/pdf/1805.05521v1 |
| work_keys_str_mv |
AT innavistbakka towardsintegratedmodellingofdynamicaccesscontrolwithumlandeventb AT elenatroubitsyna towardsintegratedmodellingofdynamicaccesscontrolwithumlandeventb |
| _version_ |
1724817947298365440 |