Paper published in a book (Scientific congresses, symposiums and conference proceedings)
A Flexible MDE approach to Enforce Fine- grained Security Policies
Elrakaiby, Yehia; Amrani, Moussa; Le Traon, Yves
2014In Proceedings of the International Symposium on Engineering Secure Software and Systems
Peer reviewed
 

Files


Full Text
ESSoS2014.pdf
Author preprint (651.2 kB)
Request a copy

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] In this paper, we present a policy-based approach for au- tomating the integration of security mechanisms into Java-based business applications. In particular, we introduce an expressive Domain Specific modeling Language (Dsl), called Security@Runtime, for the specification of security configurations of targeted systems. The Security@Runtime Dsl supports the expression of authorization, obligation and reaction policies, covering many of the security requirements of modern applica- tions. Security requirements specified in security configurations are en- forced using an application-independent Policy Enforcement Point (Pep)- Policy Decision Point (Pdp) architecture, which enables the runtime up- date of security requirements. Our work is evaluated using two systems and its advantages and limitations are discussed
Disciplines :
Computer science
Author, co-author :
Elrakaiby, Yehia ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Amrani, Moussa ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Le Traon, Yves ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Language :
English
Title :
A Flexible MDE approach to Enforce Fine- grained Security Policies
Publication date :
2014
Event name :
International Symposium on Engineering Secure Software and Systems
Event date :
from 26-02-2014 to 28-02-2014
Audience :
International
Main work title :
Proceedings of the International Symposium on Engineering Secure Software and Systems
Peer reviewed :
Peer reviewed
Available on ORBilu :
since 09 January 2014

Statistics


Number of views
127 (8 by Unilu)
Number of downloads
5 (4 by Unilu)

Scopus citations®
 
8
Scopus citations®
without self-citations
7

Bibliography


Similar publications



Contact ORBilu