A Policy-based Model-Driven Security Framework

نویسنده

  • Peter F. Linington
چکیده

The adoption of a model-driven approach to the construction of applications places the focus on business logic and takes it away from detailed middleware mechanisms. It also opens new opportunities for more detailed and more dynamic control of non-functional properties. This position statement illustrates the possibilities by considering the ways in which maintenance of security infrastructure can exploit the model-driven approach.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Model-Driven Policy Framework for Usage Control-based Privacy Position Paper

In this position paper we present a framework for the modeling and enforcement of usage control-based privacy policies. In this work we introduce only PIM (Platform Independent Model) meta-models and briefly sketch how they can be transformed into the meta-models of PSM (Platform Specific Model) and finally generate the security architecture.

متن کامل

A Model-Based Framework for Security Policy Specification, Deployment and Testing

In this paper, we propose a model-driven approach for specifying, deploying and testing security policies in Java applications. First, a security policy is specified independently of the underlying access control language (OrBAC, RBAC). It is based on a generic security meta-model which can be used for early consistency checks in the security policy. This model is then automatically transformed...

متن کامل

Model-Driven Information Flow Security for Component-Based Systems

This paper proposes a framework for information flow security in component-based systems which follows the model-driven security approach. The security policy is defined and verified from the early steps of the system design. Two kinds of non-interference properties are formally introduced and for both of them, sufficient conditions that ensures and simplifies the automated verification are pro...

متن کامل

Technology driven strategy model in Research and Technology Organization

The purpose of this study was to provide a technology driven strategy model with an interpretive structure approach in the Petrochemical Research and Technology Company. The present study is descriptive, survey in terms of the nature of the research and applied in terms of purpose. By reviewing the research literature and expert opinion polls, 10 effective factors were identified along with the...

متن کامل

Towards alignment of architectural domains in security policy specifications

Large organizations need to align the security architecture across three different domains: access control, network layout and physical infrastructure. Security policy specification formalisms are usually dedicated to only one or two of these domains. Consequently, more than one policy has to be maintained, leading to alignment problems. Approaches from the area of model-driven security enable ...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2003