Role-Based Access Control (RBAC) is a popular authorization model used to manage resource-access constraints in a wide range of systems. The standard RBAC framework adopts a static, state-independent approach to define the access rights to the system resources. It is often insufficient for correct implementation of the desired functionality and should be augmented with the dynamic, i.e., a state-dependant view on the access control. In this paper, we present a work in progress on creating a domain-specific language and the tool support for modelling and verification of dynamic RBAC. They support a tabular representation of the static RBAC constraints together with the graphical model of the scenarios and enable an automated translation of them into an Event-B model.
CITATION STYLE
Vistbakka, I., Barash, M., & Troubitsyna, E. (2018). Towards creating a DSL facilitating modelling of dynamic access control in event-B. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10817 LNCS, pp. 386–391). Springer Verlag. https://doi.org/10.1007/978-3-319-91271-4_28
Mendeley helps you to discover research relevant for your work.