Jérémy Milhau LACL - Université Paris Est Créteil - France GRIL ...

fps2011.dyndns.org

Jérémy Milhau LACL - Université Paris Est Créteil - France GRIL ...

A metamodel for static

and dynamic access

control policies

Jérémy Milhau

LACL - Université Paris Est Créteil - France

GRIL - Université de Sherbrooke - Canada

FPS 2011 - Paris


EB3SEC ASTD UML

BPEL

iASTD

B

B0

1


EB3SEC ASTD UML

BPEL

iASTD

B

B0

1


ASTD UML

B

B0

1


Why combining static

and dynamic AC rules?

2


Static

3


Static

• RBAC-like rules

3


Static

• RBAC-like rules

• Rôles - Users - etc.

3


Static

• RBAC-like rules

• Rôles - Users - etc.

• Can use contexts

to specify rules

depending on the

current state

3


Static

• RBAC-like rules

• Rôles - Users - etc.

• Can use contexts

to specify rules

depending on the

current state

SecureUML

3


Static

• RBAC-like rules

• Rôles - Users - etc.

• Can use contexts

to specify rules

depending on the

current state

SecureUML

3


ut...

4


Dynamic

5


Dynamic

• Takes state of the

policy into account

5


Dynamic

• Takes state of the

policy into account

• Modifies the state of

the policy

5


Dynamic

• Takes state of the

policy into account

• Modifies the state of

the policy

• Depends on previous

executions

5


ASTD

Dynamic

• Takes state of the

policy into account

• Modifies the state of

the policy

• Depends on previous

executions

5


ASTD









Dynamic

• Takes state of the

policy into account

• Modifies the state of

the policy

• Depends on previous

executions

5


ut...

6


How to combine static

and dynamic AC rules?

7


B

8


Unified Meta Model

B

8


Unified Meta Model



















9


Formal Filter

10


A metamodel for static

and dynamic access

control policies

Thank you!

Do you have any questions?

FPS 2011 - Paris

Similar magazines