Title
Towards realizing a formal RBAC model in real systems
Abstract
There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. There still exists an open question on how formal models can be fully realized in the system development phase. The Model Driven Development (MDD) approach has been recently introduced to deal with such a critical issue for building high assurance software systems. The MDD approach focuses on the transformation of high-level design models to system implementation modules. However, this emerging development approach lacks an adequate procedure to address security issues derived from formal security models. In this paper, we propose an empirical framework to integrate security model representation, security policy specification, and systematic validation of security model and policy, which would be eventually used for accommodating security concerns during the system development. We also describe how our framework can minimize the gap between security models and the development of secure systems. In addition, we overview a proof-of-concept prototype of our tool that facilitates existing software engineering mechanisms to achieve the above-mentioned features of our framework.
Year
DOI
Venue
2007
10.1145/1266840.1266875
SACMAT
Keywords
Field
DocType
model driven development,security concern,real system,system development phase,formal rbac model,open question,formal security model,high assurance software system,security model,critical issue,security issue,formal model,access control,model validation,proof of concept,software systems,code generation
Software security assurance,Computer science,Computer security,Role-based access control,Software system,Code generation,Implementation,Access control,Security policy,Computer security model
Conference
Citations 
PageRank 
References 
22
1.06
22
Authors
2
Name
Order
Citations
PageRank
Gail-Joon Ahn13012203.39
Hongxin Hu2123082.32