Specification and validation of authorisation constraints using UML and OCL

Karsten Sohr; Gail Joon Ahn; Martin Gogolla; Lars Migge

doi:10.1007/11555827_5

Specification and validation of authorisation constraints using UML and OCL

Karsten Sohr, Gail Joon Ahn, Martin Gogolla, Lars Migge

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

33 Scopus citations

Abstract

Authorisation constraints can help the policy architect design and express higher-level security policies for organisations such as financial institutes or governmental agencies. Although the importance of constraints has been addressed in the literature, there does not exist a systematic way to validate and test authorisation constraints. In this paper, we attempt to specify non-temporal constraints and history-based constraints in Object Constraint Language (OCL) which is a constraint specification language of Unified Modeling Language (UML) and describe how we can facilitate the USE tool to validate and test such policies. We also discuss the issues of identification of conflicting constraints and missing constraints.

Original language	English (US)
Title of host publication	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Pages	64-79
Number of pages	16
DOIs	https://doi.org/10.1007/11555827_5
State	Published - 2005
Externally published	Yes
Event	10th European Symposium on Research in Computer Security, ESORICS 2005 - Milan, Italy Duration: Sep 12 2005 → Sep 14 2005

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3679 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	10th European Symposium on Research in Computer Security, ESORICS 2005
Country/Territory	Italy
City	Milan
Period	9/12/05 → 9/14/05

ASJC Scopus subject areas

Theoretical Computer Science
General Computer Science

Access to Document

10.1007/11555827_5

Cite this

Sohr, K., Ahn, G. J., Gogolla, M., & Migge, L. (2005). Specification and validation of authorisation constraints using UML and OCL. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (pp. 64-79). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3679 LNCS). https://doi.org/10.1007/11555827_5

Specification and validation of authorisation constraints using UML and OCL. / Sohr, Karsten; Ahn, Gail Joon; Gogolla, Martin et al.
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2005. p. 64-79 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3679 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sohr, K, Ahn, GJ, Gogolla, M & Migge, L 2005, Specification and validation of authorisation constraints using UML and OCL. in Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3679 LNCS, pp. 64-79, 10th European Symposium on Research in Computer Security, ESORICS 2005, Milan, Italy, 9/12/05. https://doi.org/10.1007/11555827_5

Sohr K, Ahn GJ, Gogolla M, Migge L. Specification and validation of authorisation constraints using UML and OCL. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2005. p. 64-79. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11555827_5

Sohr, Karsten ; Ahn, Gail Joon ; Gogolla, Martin et al. / Specification and validation of authorisation constraints using UML and OCL. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics). 2005. pp. 64-79 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{43e8c72b1234474d8c28a0a72cdf9d0e,

title = "Specification and validation of authorisation constraints using UML and OCL",

abstract = "Authorisation constraints can help the policy architect design and express higher-level security policies for organisations such as financial institutes or governmental agencies. Although the importance of constraints has been addressed in the literature, there does not exist a systematic way to validate and test authorisation constraints. In this paper, we attempt to specify non-temporal constraints and history-based constraints in Object Constraint Language (OCL) which is a constraint specification language of Unified Modeling Language (UML) and describe how we can facilitate the USE tool to validate and test such policies. We also discuss the issues of identification of conflicting constraints and missing constraints.",

author = "Karsten Sohr and Ahn, {Gail Joon} and Martin Gogolla and Lars Migge",

year = "2005",

doi = "10.1007/11555827_5",

language = "English (US)",

isbn = "3540289631",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "64--79",

booktitle = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

}

TY - GEN

T1 - Specification and validation of authorisation constraints using UML and OCL

AU - Sohr, Karsten

AU - Ahn, Gail Joon

AU - Gogolla, Martin

AU - Migge, Lars

PY - 2005

Y1 - 2005

N2 - Authorisation constraints can help the policy architect design and express higher-level security policies for organisations such as financial institutes or governmental agencies. Although the importance of constraints has been addressed in the literature, there does not exist a systematic way to validate and test authorisation constraints. In this paper, we attempt to specify non-temporal constraints and history-based constraints in Object Constraint Language (OCL) which is a constraint specification language of Unified Modeling Language (UML) and describe how we can facilitate the USE tool to validate and test such policies. We also discuss the issues of identification of conflicting constraints and missing constraints.

AB - Authorisation constraints can help the policy architect design and express higher-level security policies for organisations such as financial institutes or governmental agencies. Although the importance of constraints has been addressed in the literature, there does not exist a systematic way to validate and test authorisation constraints. In this paper, we attempt to specify non-temporal constraints and history-based constraints in Object Constraint Language (OCL) which is a constraint specification language of Unified Modeling Language (UML) and describe how we can facilitate the USE tool to validate and test such policies. We also discuss the issues of identification of conflicting constraints and missing constraints.

UR - http://www.scopus.com/inward/record.url?scp=33646027053&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=33646027053&partnerID=8YFLogxK

U2 - 10.1007/11555827_5

DO - 10.1007/11555827_5

M3 - Conference contribution

AN - SCOPUS:33646027053

SN - 3540289631

SN - 9783540289630

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 64

EP - 79

BT - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

T2 - 10th European Symposium on Research in Computer Security, ESORICS 2005

Y2 - 12 September 2005 through 14 September 2005

ER -

Specification and validation of authorisation constraints using UML and OCL

Abstract

Publication series

Other

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this