Specifying role-based access constraints with object constraint language

Hua Wang; Yanchun Zhang; Jinli Cao; Jian Yang

Specifying role-based access constraints with object constraint language

Hua Wang^*, Yanchun Zhang, Jinli Cao, Jian Yang

^*Corresponding author for this work

Research output: Contribution to journal › Article

4 Citations (Scopus)

Abstract

Constraints are an important aspect of role-based access control (RBAC). Constraints have to be satisfied when an administrator wants to assign (revoke) a role to a user or a permission to a role. The importance of constraints associated with user-role assignments and permission-role assignments in RBAC has been recognized but the modelling of these constraints has not been received much attention. In this paper we use a de facto constraints specification language in software engineering to analyze the constraints in user-role assignments and permission-role assignments. We show how to represent role-based access constraints with object constraint language (OCL) and discuss the future work. Finally, comparisons with other related work are presented.

Original language	English
Pages (from-to)	687-696
Number of pages	10
Journal	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3007
Publication status	Published - 2004
Externally published	Yes

Access to Document

Link to publication in Scopus

Fingerprint Dive into the research topics of 'Specifying role-based access constraints with object constraint language'. Together they form a unique fingerprint.

Cite this

Wang, H., Zhang, Y., Cao, J., & Yang, J. (2004). Specifying role-based access constraints with object constraint language. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 3007, 687-696.

@article{ca3ee54bcd9344298be8bd287f95dd9f,

title = "Specifying role-based access constraints with object constraint language",

abstract = "Constraints are an important aspect of role-based access control (RBAC). Constraints have to be satisfied when an administrator wants to assign (revoke) a role to a user or a permission to a role. The importance of constraints associated with user-role assignments and permission-role assignments in RBAC has been recognized but the modelling of these constraints has not been received much attention. In this paper we use a de facto constraints specification language in software engineering to analyze the constraints in user-role assignments and permission-role assignments. We show how to represent role-based access constraints with object constraint language (OCL) and discuss the future work. Finally, comparisons with other related work are presented.",

author = "Hua Wang and Yanchun Zhang and Jinli Cao and Jian Yang",

year = "2004",

language = "English",

volume = "3007",

pages = "687--696",

journal = "Lecture Notes in Computer Science",

issn = "0302-9743",

publisher = "Springer, Springer Nature",

}

TY - JOUR

T1 - Specifying role-based access constraints with object constraint language

AU - Wang, Hua

AU - Zhang, Yanchun

AU - Cao, Jinli

AU - Yang, Jian

PY - 2004

Y1 - 2004

N2 - Constraints are an important aspect of role-based access control (RBAC). Constraints have to be satisfied when an administrator wants to assign (revoke) a role to a user or a permission to a role. The importance of constraints associated with user-role assignments and permission-role assignments in RBAC has been recognized but the modelling of these constraints has not been received much attention. In this paper we use a de facto constraints specification language in software engineering to analyze the constraints in user-role assignments and permission-role assignments. We show how to represent role-based access constraints with object constraint language (OCL) and discuss the future work. Finally, comparisons with other related work are presented.

AB - Constraints are an important aspect of role-based access control (RBAC). Constraints have to be satisfied when an administrator wants to assign (revoke) a role to a user or a permission to a role. The importance of constraints associated with user-role assignments and permission-role assignments in RBAC has been recognized but the modelling of these constraints has not been received much attention. In this paper we use a de facto constraints specification language in software engineering to analyze the constraints in user-role assignments and permission-role assignments. We show how to represent role-based access constraints with object constraint language (OCL) and discuss the future work. Finally, comparisons with other related work are presented.

UR - http://www.scopus.com/inward/record.url?scp=35048840185&partnerID=8YFLogxK

M3 - Article

VL - 3007

SP - 687

EP - 696

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

SN - 0302-9743

ER -