Paper Info
Title
Model driven security: From UML models to access control infrastructures
Abstract
We present a new approach to building secure systems. In our approach, which we call Model Driven Security, designers specify system models along with their security requirements and use tools to automatically generate system architectures from the models, including complete, configured access control infrastructures. Rather than fixing one particular modeling language for this process, we propose a general schema for constructing such languages that combines languages for modeling systems with languages for modeling security. We present several instances of this schema that combine (both syntactically and semantically) different UML modeling languages with a security modeling language for formalizing access control requirements. From models in the combined languages, we automatically generate access control infrastructures for server-based applications, built from declarative and programmatic access control mechanisms. The modeling languages and generation process are semantically well-founded and are based on an extension of Role-Based Access Control. We have implemented this approach in a UML-based CASE-tool and report on experiments.
Year
DOI
Venue
2006
10.1145/1125808.1125810
ACM Trans. Softw. Eng. Methodol.
Keywords
Field
DocType
distributed application,modeling language,system architecture,object constraint language,role based access control,case tool,access control,security model,unified modeling language,system modeling,metamodeling,security engineering
Programming language,Unified Modeling Language,Security engineering,Computer science,Modeling language,Role-based access control,Theoretical computer science,Applications of UML,Access control,Object Constraint Language,Metamodeling
Journal
Volume
Issue
ISSN
15
1
1049-331X
Citations 
PageRank 
References 
209
7.83
14
Authors
3
Search Limit
100209
Name
Order
Citations
PageRank
David A. Basin14930281.93
Jürgen Doser279338.89
Torsten Lodderstedt366631.84