@inproceedings{252b66c31f624526b1718a48083f6258,
title = "Role-based authorization constraints specification using Object Constraint Language",
abstract = "The purpose of access control is to limit the actions on a computer system that a legitimate user can perform. Role-based access control (RBAC) has generated great interest in the security community as a flexible approach in access control. An important aspect of RBAC is constraints that constrain what components in RBAC are allowed to do. Although researchers have identified useful constraints using formal specification languages such as RCL2000, there still exists a demand to have constraint specification languages for system developers who are working on secure systems development. The authors discuss another approach to specifying constraints using a de facto constraint specification language in the software engineering arena. We use a declarative language, Object Constraint Language (OCL) that is part of the Unified Modeling Language (UML) and has been used in object oriented analysis and design. We describe how to specify previously identified role-based authorization constraints, and the future direction of this work is also addressed.",
keywords = "Access control, Authorization, Formal languages, Natural languages, Object oriented modeling, Permission, Security, Software engineering, Specification languages, Unified modeling language",
author = "Ahn, {Gail Joon} and Shin, {M. E.}",
note = "Publisher Copyright: {\textcopyright} 2001 IEEE.; 10th IEEE International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WET ICE 2001 ; Conference date: 20-06-2001 Through 22-06-2001",
year = "2001",
doi = "10.1109/ENABL.2001.953406",
language = "English",
series = "Proceedings of the Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises, WETICE",
publisher = "IEEE Computer Society",
pages = "157--162",
booktitle = "Proceedings - 10th IEEE International Workshop on Enabling Technologies",
}