Role-based authorization constraints specification using Object Constraint Language

Gail-Joon Ahn, M. E. Shin

Research output: Chapter in Book/Report/Conference proceedingConference contribution

54 Scopus citations

Abstract

The purpose of access control is to limit the actions on a computer system that a legitimate user can perform. Role-based access control (RBAC) has generated great interest in the security community as a flexible approach in access control. An important aspect of RBAC is constraints that constrain what components in RBAC are allowed to do. Although researchers have identified useful constraints using formal specification languages such as RCL2000, there still exists a demand to have constraint specification languages for system developers who are working on secure systems development. The authors discuss another approach to specifying constraints using a de facto constraint specification language in the software engineering arena. We use a declarative language, Object Constraint Language (OCL) that is part of the Unified Modeling Language (UML) and has been used in object oriented analysis and design. We describe how to specify previously identified role-based authorization constraints, and the future direction of this work is also addressed.

Original languageEnglish (US)
Title of host publicationProceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE
PublisherIEEE Computer Society
Pages157-162
Number of pages6
Volume2001-January
ISBN (Print)0769512690
DOIs
StatePublished - 2001
Externally publishedYes
Event10th IEEE International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2001 - Cambridge, United States
Duration: Jun 20 2001Jun 22 2001

Other

Other10th IEEE International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2001
CountryUnited States
CityCambridge
Period6/20/016/22/01

Keywords

  • Access control
  • Authorization
  • Formal languages
  • Natural languages
  • Object oriented modeling
  • Permission
  • Security
  • Software engineering
  • Specification languages
  • Unified modeling language

ASJC Scopus subject areas

  • Hardware and Architecture
  • Software

Fingerprint Dive into the research topics of 'Role-based authorization constraints specification using Object Constraint Language'. Together they form a unique fingerprint.

  • Cite this

    Ahn, G-J., & Shin, M. E. (2001). Role-based authorization constraints specification using Object Constraint Language. In Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE (Vol. 2001-January, pp. 157-162). [953406] IEEE Computer Society. https://doi.org/10.1109/ENABL.2001.953406