Reference : Security@Runtime: A flexible MDE approach to enforce fine-grained security policies
Scientific congresses, symposiums and conference proceedings : Paper published in a journal
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/26422
Security@Runtime: A flexible MDE approach to enforce fine-grained security policies
English
Elrakaiby, Yehia mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) >]
Amrani, Moussa mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) >]
Le Traon, Yves mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)]
2014
Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
8364 LNCS
19-34
Yes
International
03029743
6th International Symposium on Engineering Secure Software and Systems, ESSoS 2014
26 February 2014 through 28 February 2014
Munich
[en] Access Control ; Java Security ; Obligations ; Security Domain Specific Language ; Security Policies ; Domain specific modeling languages ; Fine-grained security policies ; Integration of security ; Policy enforcement points ; Security domains ; Security policy ; Access control ; Security systems ; Java programming language
[en] In this paper, we present a policy-based approach for automating the integration of security mechanisms into Java-based business applications. In particular, we introduce an expressive Domain Specific modeling Language (Dsl), called Security@Runtime, for the specification of security configurations of targeted systems. The Security@Runtime Dsl supports the expression of authorization, obligation and reaction policies, covering many of the security requirements of modern applications. Security requirements specified in security configurations are enforced using an application-independent Policy Enforcement Point Pep)-Policy Decision Point (Pdp) architecture, which enables the runtime update of security requirements. Our work is evaluated using two systems and its advantages and limitations are discussed. © 2014 Springer International Publishing Switzerland.
Technische Universitat Munchen;NESSoS FP7 Project, Network of Excellence on;Engineering Secure Future Internet Software;Services and Systems
http://hdl.handle.net/10993/26422
10.1007/978-3-319-04897-0-2
103167
9783319048963

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
Security@Runtime.pdfPublisher postprint1.76 MBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.