Comprehensive two-level analysis of role-based delegation and revocation policies with UML and OCL

Sohr, Karsten; Kuhlmann, Mirco; Gogolla, Martin; Hu, Hongxin; Ahn, Gail-Joon

doi:10.1016/j.infsof.2012.06.008

Cited by 13 publications

(14 citation statements)

References 38 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similarly, some break-glass approaches allow for the definition of break-glass policies for individual subjects (subject-based break-glass policies, see, e.g., [1,29,34]), others allow for the definition of break-glass policies on role-level (role-based break-glass policies, see, e.g., [7,16,45]). In addition, some of the delegation and break-glass models explicitly address entailment constraints (see, e.g., [39,42,45]). Entailment constraints define additional conditions for access control decisions by considering, e.g., the task history or certain context information (such as time or location).…”

Section: Development Of the Research Areamentioning

confidence: 99%

“…A SOD constraint defines that two permissions/tasks must not be assigned to (or activated/performed by) the same subject, while a BOD constraint defines that two bound permissions/tasks need to be assigned to the same subject or role. Furthermore, some approaches offer modeling support to visualize the respective concepts, some approaches (also) provide corresponding tool support for enforcing delegation or break-glass policies (see, e.g., [37,38,42]). This variety presents a challenge for researchers working in this field or wishing to quickly grasp the state of research.…”

Section: Development Of the Research Areamentioning

confidence: 99%

“…An approach similar to [50] is presented in [23], where a capability-based delegation model (CRBAC) based on RBAC96 (see [30]) is introduced to support cross-domain delegation of roles and permissions in terms of capability transfer. Recently, an approach for the model-based specification of rolebased delegation and revocation policies via UML was introduced in [42]. They use standard UML class and object diagrams for graphically visualizing delegation policies.…”

Section: Comparison Of Delegation Approachesmentioning

confidence: 99%

“…They use standard UML class and object diagrams for graphically visualizing delegation policies. Corresponding tool support as well as conflict detection and resolution handling are not provided in [42].…”

Section: Comparison Of Delegation Approachesmentioning

confidence: 99%

See 3 more Smart Citations

A Review of Delegation and Break-Glass Models for Flexible Access Control Management

Schefer-Wenzl

Bukvova²,

Strembeck³

2014

Business Information Systems Workshops

View full text Add to dashboard Cite

Abstract. Access control models provide an important means for the systematic specification and management of the permissions in a business information system. While a number of well-known access control models exists (such as the role-based access control model, for example), standard access control models are often not suited for handling exceptional situations. In this context, the demand to increase the flexibility of access management has especially been approached via the development of delegation models and break-glass models. This paper presents the results of a literature review for 329 delegation and break-glass approaches. We give an overview on the existing body of scientific literature in these two areas and compare 35 selected approaches in detail. In our literature review, we revealed different ways of providing delegation and break-glass concepts in general as well as in the context of business process management. Moreover, we identified different sub-topics that have not yet been addressed in detail and thus provide opportunities for future research.

show abstract

Section: Development Of the Research Areamentioning

confidence: 99%

Section: Development Of the Research Areamentioning

confidence: 99%

Section: Comparison Of Delegation Approachesmentioning

confidence: 99%

Section: Comparison Of Delegation Approachesmentioning

confidence: 99%

See 2 more Smart Citations

A Review of Delegation and Break-Glass Models for Flexible Access Control Management

Schefer-Wenzl

Bukvova²,

Strembeck³

2014

Business Information Systems Workshops

View full text Add to dashboard Cite

show abstract

“…Instances of patterns 1 to 3 can be checked over an authorization model instance, and instances of patterns 4 to 9 can be checked over a delegation model instance. In section 4.1, we introduce a banking example partially borrowed from [25]. We model this example and illustrate how patterns can be instantiated to detect SoD conflicts in this setting.…”

Section: Patterns To Check Separation Of Duties In Authorization Polimentioning

confidence: 99%

Verification of Authorization Policies Modified by Delegation

Egea

Büttner

2014

Engineering Secure Future Internet Services and Systems

View full text Add to dashboard Cite

Abstract. Delegation is widely used in large organizations where access to systems needs to be controlled and often depends on the role of a user within the organization. Delegation allows to grant access rights under certain, often temporal conditions. Usually, a delegation policy specifies the authority to delegate, and an administrative delegation operation performs the changes in the authorization policy accordingly. Unfortunately, the consequences of these changes are not checked in common practice before delegation is 'in-effect.' In this work, we present a systematic, automated approach to verify, before the actual enforcement in the system, whether a subject has the right to perform delegation, and that this delegation will not introduce Separation of Duties' (SoD) conflicts. We implement the delegation operation as an ATL transformation and apply our previous work on automatic transformation verification to check an authorization policy that is modified by a delegation policy. Our approach allows us to check, following an automated process: i) that delegation is only performed when conditions, for legitimate delegation, that we formalize using OCL, hold; ii) that the output of our transformation is always a valid authorization policy when it is obtained by executing the delegation operation using as input a valid authorization and delegation policy; iii) the absence of SoD' conflicts in the resulting authorization policy, for which we provide patterns that can be instantiated following policy's rules, as we illustrate.

show abstract

Ontology-Based Delegation of Access Control: An Enhancement to the XACML Delegation Profile

Daud

Sánchez

Viejo

2015

Trust, Privacy and Security in Digital Business

View full text Add to dashboard Cite

Comprehensive two-level analysis of role-based delegation and revocation policies with UML and OCL

Cited by 13 publications

References 38 publications

A Review of Delegation and Break-Glass Models for Flexible Access Control Management

A Review of Delegation and Break-Glass Models for Flexible Access Control Management

Verification of Authorization Policies Modified by Delegation

Ontology-Based Delegation of Access Control: An Enhancement to the XACML Delegation Profile

Contact Info

Product

Resources

About