Articulating and enforcing authorisation policies with UML and OCL

Karsten Sohr; Gail Joon Ahn; Lars Migge

doi:10.1145/1083200.1083215

Articulating and enforcing authorisation policies with UML and OCL

Karsten Sohr, Gail Joon Ahn, Lars Migge

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

9 Scopus citations

Abstract

Nowadays, more and more security-relevant data are stored on computer systems; security-critical business processes are mapped to their digital pendants. This situation applies to various critical infrastructures requiring that different security requirements must be fulfilled. It demands a way to design and express higher-level security policies for such critical organizations. In this paper we focus on authorisation policies to demonstrate how software engineering techniques can help validate authorisation constraints and enforce access control policies. Our approach leverages features and functionalities of the UML/OCL modeling methods as well as model driven approach to represent and specify authorisation model and constraints. Using our authorisation constraints editor, we articulate role-based authorisation policies. Also, we attempt to validate and enforce such constraints with the USE (UML Specification Environment) tool.

Original language	English (US)
Title of host publication	SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications
Publisher	Association for Computing Machinery, Inc
ISBN (Electronic)	1595931147, 9781595931146
DOIs	https://doi.org/10.1145/1083200.1083215
State	Published - May 15 2005
Externally published	Yes
Event	2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, SESS 2005 - St. Louis, United States Duration: May 15 2005 → May 16 2005

Publication series

Name	SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications

Other

Other	2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, SESS 2005
Country	United States
City	St. Louis
Period	5/15/05 → 5/16/05

ASJC Scopus subject areas

Mechanical Engineering
Software
Automotive Engineering

Access to Document

10.1145/1083200.1083215

Fingerprint Dive into the research topics of 'Articulating and enforcing authorisation policies with UML and OCL'. Together they form a unique fingerprint.

Cite this

Sohr, K., Ahn, G. J., & Migge, L. (2005). Articulating and enforcing authorisation policies with UML and OCL. In SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications (SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications). Association for Computing Machinery, Inc. https://doi.org/10.1145/1083200.1083215

Articulating and enforcing authorisation policies with UML and OCL. / Sohr, Karsten; Ahn, Gail Joon; Migge, Lars.

SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications. Association for Computing Machinery, Inc, 2005. (SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sohr, K, Ahn, GJ & Migge, L 2005, Articulating and enforcing authorisation policies with UML and OCL. in SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications. SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, Association for Computing Machinery, Inc, 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, SESS 2005, St. Louis, United States, 5/15/05. https://doi.org/10.1145/1083200.1083215

Sohr K, Ahn GJ, Migge L. Articulating and enforcing authorisation policies with UML and OCL. In SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications. Association for Computing Machinery, Inc. 2005. (SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications). https://doi.org/10.1145/1083200.1083215

Sohr, Karsten ; Ahn, Gail Joon ; Migge, Lars. / Articulating and enforcing authorisation policies with UML and OCL. SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications. Association for Computing Machinery, Inc, 2005. (SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications).

@inproceedings{7e026c67891f4b3ebe3ed92290e2f269,

title = "Articulating and enforcing authorisation policies with UML and OCL",

abstract = "Nowadays, more and more security-relevant data are stored on computer systems; security-critical business processes are mapped to their digital pendants. This situation applies to various critical infrastructures requiring that different security requirements must be fulfilled. It demands a way to design and express higher-level security policies for such critical organizations. In this paper we focus on authorisation policies to demonstrate how software engineering techniques can help validate authorisation constraints and enforce access control policies. Our approach leverages features and functionalities of the UML/OCL modeling methods as well as model driven approach to represent and specify authorisation model and constraints. Using our authorisation constraints editor, we articulate role-based authorisation policies. Also, we attempt to validate and enforce such constraints with the USE (UML Specification Environment) tool.",

author = "Karsten Sohr and Ahn, {Gail Joon} and Lars Migge",

year = "2005",

month = may,

day = "15",

doi = "10.1145/1083200.1083215",

language = "English (US)",

series = "SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications",

publisher = "Association for Computing Machinery, Inc",

booktitle = "SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications",

note = "2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, SESS 2005 ; Conference date: 15-05-2005 Through 16-05-2005",

}

TY - GEN

T1 - Articulating and enforcing authorisation policies with UML and OCL

AU - Sohr, Karsten

AU - Ahn, Gail Joon

AU - Migge, Lars

PY - 2005/5/15

Y1 - 2005/5/15

N2 - Nowadays, more and more security-relevant data are stored on computer systems; security-critical business processes are mapped to their digital pendants. This situation applies to various critical infrastructures requiring that different security requirements must be fulfilled. It demands a way to design and express higher-level security policies for such critical organizations. In this paper we focus on authorisation policies to demonstrate how software engineering techniques can help validate authorisation constraints and enforce access control policies. Our approach leverages features and functionalities of the UML/OCL modeling methods as well as model driven approach to represent and specify authorisation model and constraints. Using our authorisation constraints editor, we articulate role-based authorisation policies. Also, we attempt to validate and enforce such constraints with the USE (UML Specification Environment) tool.

AB - Nowadays, more and more security-relevant data are stored on computer systems; security-critical business processes are mapped to their digital pendants. This situation applies to various critical infrastructures requiring that different security requirements must be fulfilled. It demands a way to design and express higher-level security policies for such critical organizations. In this paper we focus on authorisation policies to demonstrate how software engineering techniques can help validate authorisation constraints and enforce access control policies. Our approach leverages features and functionalities of the UML/OCL modeling methods as well as model driven approach to represent and specify authorisation model and constraints. Using our authorisation constraints editor, we articulate role-based authorisation policies. Also, we attempt to validate and enforce such constraints with the USE (UML Specification Environment) tool.

UR - http://www.scopus.com/inward/record.url?scp=85085846560&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85085846560&partnerID=8YFLogxK

U2 - 10.1145/1083200.1083215

DO - 10.1145/1083200.1083215

M3 - Conference contribution

AN - SCOPUS:85085846560

T3 - SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications

BT - SESS 2005 - Proceedings of the 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications

PB - Association for Computing Machinery, Inc

T2 - 2005 Workshop on Software Engineering for Secure Systems - Building Trustworthy Applications, SESS 2005

Y2 - 15 May 2005 through 16 May 2005

ER -