Comprehensive Two-Level Analysis of Static and Dynamic RBAC Constraints with UML and OCL

Download Now
Provided by: University of Brasilia
Topic: Security
Format: PDF
Organizations with stringent security requirements like banks or hospitals frequently adopt Role-Based Access Control (RBAC) principles to simplify their internal permission management. Authorization constraints represent a fundamental advanced RBAC concept enabling precise restrictions on access rights. Thereby, the complexity of the resulting security policies increases so that tool support for comfortable creation and adequate validation is required. The authors propose a new approach to developing and analyzing RBAC policies using UML for modeling RBAC core concepts and OCL to realize authorization constraints.
Download Now

Find By Topic