TY - GEN
T1 - Towards realizing a formal RBAC model in real systems
AU - Ahn, Gail Joon
AU - Hu, Hongxin
PY - 2007
Y1 - 2007
N2 - There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. The MDD approach focuses on the transformation of high-level design models to system implementation modules. However, this emerging development approach lacks an adequate procedure to address security issues derived from formal security models. In this paper, we propose an empirical framework to integrate security model representation, security policy specification, and systematic validation of security model and policy, which would be eventually used for accommodating security concerns during the system development. We also describe how our framework can minimize the gap between security models and the development of secure systems. In addition, we overview a proof-of-concept prototype of our tool that facilitates existing software engineering mechanisms to achieve the above-mentioned features of our framework.
AB - There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. The MDD approach focuses on the transformation of high-level design models to system implementation modules. However, this emerging development approach lacks an adequate procedure to address security issues derived from formal security models. In this paper, we propose an empirical framework to integrate security model representation, security policy specification, and systematic validation of security model and policy, which would be eventually used for accommodating security concerns during the system development. We also describe how our framework can minimize the gap between security models and the development of secure systems. In addition, we overview a proof-of-concept prototype of our tool that facilitates existing software engineering mechanisms to achieve the above-mentioned features of our framework.
KW - Access control
KW - Code generation
KW - Model validation
KW - Policy specification
UR - http://www.scopus.com/inward/record.url?scp=34548089388&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=34548089388&partnerID=8YFLogxK
U2 - 10.1145/1266840.1266875
DO - 10.1145/1266840.1266875
M3 - Conference contribution
AN - SCOPUS:34548089388
SN - 1595937455
SN - 9781595937452
T3 - Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT
SP - 215
EP - 224
BT - SACMAT'07
T2 - SACMAT'07: 12th ACM Symposium on Access Control Models and Technologies
Y2 - 20 June 2007 through 22 June 2007
ER -