Paper published in a book (Scientific congresses, symposiums and conference proceedings)
GemRBAC-DSL: a High-level Specification Language for Role-based Access Control Policies
Ben Fadhel, Ameni; Bianculli, Domenico; Briand, Lionel
2016In 21st ACM Symposium on Access Control Models and Technologies (SACMAT 2016)
Peer reviewed
 

Files


Full Text
SACMAT2016.pdf
Author postprint (357.65 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] A role-based access control (RBAC) policy restricts a user to perform operations based on her role within an organization. Several RBAC models have been proposed to represent different types of RBAC policies. However, the expressiveness of these models has not been matched by specification languages for RBAC policies. Indeed, existing policy specification languages do not support all the types of RBAC policies defined in the literature. In this paper we aim to bridge the gap between highly-expressive RBAC models and policy specification languages, by presenting GemRBAC-DSL, a new specification language designed on top of an existing, generalized conceptual model for RBAC. The language sports a syntax close to natural language, to encourage its adoption among practitioners. We also define semantic checks to detect conflicts and inconsistencies among the policies written in a GemRBAC-DSL specification. We show how the semantics of GemRBAC-DSL can be expressed in terms of an existing formalization of RBAC policies as OCL (Object Constraint Language) constraints on the corresponding RBAC conceptual model. This formalization paves the way to define a model-driven approach for the enforcement of policies written in GemRBAC-DSL.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > Software Verification and Validation Lab (SVV Lab)
Disciplines :
Computer science
Author, co-author :
Ben Fadhel, Ameni ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Bianculli, Domenico  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Briand, Lionel ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
External co-authors :
no
Language :
English
Title :
GemRBAC-DSL: a High-level Specification Language for Role-based Access Control Policies
Publication date :
June 2016
Event name :
21st ACM SYMPOSIUM ON ACCESS CONTROL MODELS AND TECHNOLOGIES
Event organizer :
179-190
Event place :
Shanghai, China
Event date :
from 06-06-2016 to 08-06-2016
Audience :
International
Main work title :
21st ACM Symposium on Access Control Models and Technologies (SACMAT 2016)
Publisher :
ACM
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
FnR Project :
FNR3949772 - Validation And Verification Laboratory, 2010 (01/01/2012-31/07/2018) - Lionel Briand
Available on ORBilu :
since 18 April 2016

Statistics


Number of views
261 (30 by Unilu)
Number of downloads
338 (26 by Unilu)

OpenCitations
 
4

Bibliography


Similar publications



Contact ORBilu