0% Complete
Home
/
11th International Conference on Computer and Knowledge Engineering
Automatic Generation of XACML Code using Model-Driven Approach
Authors :
Athareh Fatemian
1
Bahman Zamani
2
Marzieh Masoumi
3
Mehran Kamranpour
4
Behrouz Tork Ladani
5
Shekoufeh Kolahdouz Rahimi
6
1- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
2- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
3- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
4- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
5- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
6- MDSE Research Group, Faculty of Computer Engineering University of Isfahan
Keywords :
Access Control Policies, XACML, ABAC, RBAC, MDE, DSML
Abstract :
Precise specification of security requirements of software systems in general, and access control policies in particular, is a critical issue. The eXtensible Access Control Markup Language (XACML) is a well-known standard for defining access control policies. The problem is that using this language and manual formulation of policies requires technical knowledge and is error prone. To address this challenge, we propose a Domain-Specific Modeling Language (DSML), called Dual-XACML that supports both Role Based Access Control (RBAC) and Attribute Based Access Control (ABAC). As the tool support, a graphical editor as well as a transformation engine has been developed in this research. The graphical editor allows the user to create a model of access control policies for the target system. Then, using the transformations, the model is transformed into the corresponding XACML code. To evaluate the proposed approach, the XACML code of a typical system is generated, automatically.
Papers List
List of archived papers
Multi-Layer Collaborative Graph with BPR Similarity Embedding for Recommender System
Mostafa Ghorbani - Azadeh Mansouri
DTranIDS: A Two-Tiered Intrusion Detection System for RPL-based IoT Networks based on Decision Tree and Transformer Models
Mohammad Fazeli - Mohsen Raji - Mohammad Mahdi Fazeli
Analysis of Address Lifespans in Bitcoin and Ethereum
Amir Mohammad Karimi Mamaghan - Amin Setayesh - Behnam Bahrak
Automatic Detection and Risk Assessment of Session Management Vulnerabilities in Web Applications
Nasrin Garmabi - Mohammad Ali Hadavi
Distilled BERT Model In Natural Language Processing
Yazdan Zandiye Vakili - Avisa Fallah - Hedieh Sajedi
Averting Mode Collapse for Generative Zero-Shot Learning
Shayan Ramazi - Setare Shabani
I-ACS: An Improved Ant Colony System to Solve the Time-Dependent Orienteering Problem
Zahra Bakhshandeh - Morteza Keshtkaran
Enhanced Duplicate Bug Report Detection in Anonymized Environments: A Parallelized Multi-Task Learning Framework
Alireza Shorafa - Abolfazl Zarghani
AVID: A VARIATIONAL INFERENCE DELIBERATION FOR META-LEARNING
Alireza Javaheri - Arsham Gholamzadeh Khoee - Saeed Reza Kheradpisheh - Hadi Farahani - Mohammad Ganjtabesh
A Comprehensive Approach to SMS Spam Filtering Integrating Embedded and Statistical Features
Shaghayegh Hosseinpour - Mohammad Reza Keyvanpour
more
Samin Hamayesh - Version 43.7.0
