Towards Creating a DSL Facilitating Modelling of Dynamic Access Control in Event-B

A4 Conference proceedings


Internal Authors/Editors


Publication Details

List of Authors: Inna Vistbakka, Mikhail Barash, Elena Troubitsyna
Editors: Michael J. Butler, Alexander Raschke, Thai Son Hoang, Klaus Reichl
Publication year: 2018
Publisher: Springer
Book title: Abstract State Machines, Alloy, B, TLA, VDM, and Z - 6th International Conference, ABZ 2018, Southampton, UK, June 5-8, 2018, Proceedings
Title of series: Lecture Notes in Computer Science (LNCS)
Volume number: 10817
Start page: 386
End page: 391
ISBN: 978-3-319-91270-7
eISBN: 978-3-319-91271-4
ISSN: 0302-9743


Abstract

Role-Based Access Control (RBAC) is a popular authorization model used to manage resource-access constraints in a wide range of systems. The standard RBAC framework adopts a static, state-independent approach to define the access rights to the system resources. It is often insufficient for correct implementation of the desired functionality and should be augmented with the dynamic, i.e., a state-dependant view on the access control. In this paper, we present a work in progress on creating a domain-specific language and the tool support for modelling and verification of dynamic RBAC. They support a tabular representation of the static RBAC constraints together with the graphical model of the scenarios and enable an automated translation of them into an Event-B model.


Keywords

Access control, DSL, Event-B, JetBrains MPS, Verification

Last updated on 2019-16-10 at 03:20