Towards Attribute-Based Authorisation for Bidirectional Programming

Montrieux, Lionel; Hu, Zhenjiang

doi:10.1145/2752952.2752963

Cited by 5 publications

(3 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Similarly to our approach, a dedicated policy language is used by [38], from which a lens is automatically generated to enforce access control for XML documents. In addition to the attributes and context of the assets (XML nodes), the XQuery-based policy can take into account external (subject or context) attributes as well.…”

Section: Access Control For Xml Documentsmentioning

confidence: 99%

Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations

et al. 2017

View full text Add to dashboard Cite

Large-scale model-driven system engineering projects are carried out collaboratively. Engineering artefacts stored in model repositories are developed in either offline (checkout-modify-commit) or online (GoogleDocstyle) scenarios. Complex systems frequently integrate models and components developed by different teams, vendors and suppliers. Thus, confidentiality and integrity of design artefacts need to be protected in accordance with access control policies. We propose a secure collaborative modelling approach where fine-grained access control for models is strictly enforced by bidirectional model transformations. Collaborators obtain filtered local copies of the model containing only those model elements which they are allowed to read; write access control policies are checked on the server upon submitting model changes. We present a formal collaboration schema which provenly guarantees certain correctness constraints, and its adaption to online scenarios with on-the-fly change propagation and the integration into existing version control systems to support offline scenarios. The approach is illustrated, and its scalability is evaluated using a case study of the MONDO EU project.

show abstract

Section: Access Control For Xml Documentsmentioning

confidence: 99%

Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations

et al. 2017

View full text Add to dashboard Cite

show abstract

“…Similarly to our approach, a dedicated policy language is used by Montrieux and Hu [68], from which a transformation (lens) is automatically generated to enforce access control for XML documents. In addition to the attributes and context of the assets (XML nodes), the XQuery-based policy can take into account external (subject or context) attributes as well.…”

Section: Fine-grained Access Control In Various Domainsmentioning

confidence: 99%

Scalable modeling technologies in the wild: an experience report on wind turbines control applications development

et al. 2020

View full text Add to dashboard Cite

Scalability in modeling has many facets, including the ability to build larger models and domain specific languages (DSLs) efficiently. With the aim of tackling some of the most prominent scalability challenges in Model-Based Engineering (MBE), the MONDO EU project developed the theoretical foundations and open-source implementation of a platform for scalable modeling and model management. The platform includes facilities for building large graphical DSLs, for splitting large models into sets of smaller interrelated fragments, to index large collections of models to speed-up their querying, and to enable the collaborative construction and refinement of complex models, among other features. This paper reports on the tools provided by MONDO that Ikerlan, a medium-sized technology center which in the last decade has embraced the MBE paradigm, adopted in order to

show abstract

“…Similarly to our approach, a dedicated policy is used by [30], from which a lens is automatically generated to enforce access control for XML documents. In addition to the attributes and context of the assets (XML nodes), the XQuerybased policy can take into account external (subject or context) attributes as well.…”

Section: Related Workmentioning

confidence: 99%

Query-based access control for secure collaborative modeling using bidirectional transformations*

Bergmann

Debreceni

Ráth

et al. 2016

Proceedings of the ACM/IEEE 19th International Conference on Model Driven Engineering Languages and Systems

View full text Add to dashboard Cite

Large-scale model-driven system engineering projects are carried out collaboratively. Engineering artifacts stored in model repositories are developed in either offline (checkoutmodify-commit) or online (GoogleDoc-style) scenarios. Complex systems frequently integrate models and components developed by different teams, vendors and suppliers. Thus confidentiality and integrity of design artifacts need to be protected by access control policies.We propose a technique for secure collaborative modeling where (1) fine-grained access control for models can be defined by model queries, and (2) such access control policies are strictly enforced by bidirectional model transformations. Each collaborator obtains a filtered local copy of the model containing only those model elements which they are allowed to read; write access control policies are checked on the server upon submitting model changes. We illustrate the approach and carry out an initial scalability assessment using a case study of the MONDO EU project.

show abstract

Towards Attribute-Based Authorisation for Bidirectional Programming

Cited by 5 publications

References 31 publications

Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations

Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations

Scalable modeling technologies in the wild: an experience report on wind turbines control applications development

Query-based access control for secure collaborative modeling using bidirectional transformations*

Contact Info

Product

Resources

About