Towards Creating a DSL Facilitating Modelling of Dynamic Access Control in Event-B

Inna Vistbakka, Mikhail Barash, Elena Troubitsyna

Research output: Chapter in Book/Conference proceedingConference contributionScientificpeer-review

6 Citations (Scopus)

Abstract

Role-Based Access Control (RBAC) is a popular authorization model used to manage resource-access constraints in a wide range of systems. The standard RBAC framework adopts a static, state-independent approach to define the access rights to the system resources. It is often insufficient for correct implementation of the desired functionality and should be augmented with the dynamic, i.e., a state-dependant view on the access control. In this paper, we present a work in progress on creating a domain-specific language and the tool support for modelling and verification of dynamic RBAC. They support a tabular representation of the static RBAC constraints together with the graphical model of the scenarios and enable an automated translation of them into an Event-B model.

Original languageUndefined/Unknown
Title of host publicationAbstract State Machines, Alloy, B, TLA, VDM, and Z - 6th International Conference, ABZ 2018, Southampton, UK, June 5-8, 2018, Proceedings
EditorsMichael J. Butler, Alexander Raschke, Thai Son Hoang, Klaus Reichl
PublisherSpringer
Pages386–391
ISBN (Electronic)978-3-319-91271-4
ISBN (Print)978-3-319-91270-7
DOIs
Publication statusPublished - 2018
MoE publication typeA4 Article in a conference publication
EventInternational ABZ Conference on ASM, Alloy, B, TLA, VDM, and Z - 6th International ABZ Conference on Abstract State Machines, Alloy, B, TLA, VDM, and Z
Duration: 5 Jun 20188 Jun 2018

Conference

ConferenceInternational ABZ Conference on ASM, Alloy, B, TLA, VDM, and Z
Period05/06/1808/06/18

Keywords

  • Access control
  • DSL
  • Event-B
  • JetBrains MPS
  • Verification

Cite this