Specifying role-based access constraints with object constraint language

作     者：Wang, Hua Zhang, Yanchun Cao, Jinli Yang, Jian 

作者机构：Department of Maths and Computing University of Southern Queensland Toowoomba QLD 4350 Australia School of Computer Science and Mathematics Victoria University of Technology Melbourne City Vic. MC8001 Australia Department of Computer Science and Computer Engineering La Trobe University Melbourne Vic. 3086 Australia School of Information Technology Swinbourne University of Technology Hawthorn Vic. 3122 Australia 

出 版 物：《Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)》 (Lect. Notes Comput. Sci.)

年 卷 期：2004年第3007卷

页      面：687-696页

核心收录：

主　　题：Software engineering 

摘      要：Constraints are an important aspect of role-based access control (RBAC). Constraints have to be satisfied when an administrator wants to assign (revoke) a role to a user or a permission to a role. The importance of constraints associated with user-role assignments and permission-role assignments in RBAC has been recognized but the modelling of these constraints has not been received much attention. In this paper we use a de facto constraints specification language in software engineering to analyze the constraints in user-role assignments and permission-role assignments. We show how to represent role-based access constraints with object constraint language (OCL) and discuss the future work. Finally, comparisons with other related work are presented. © Springer-Verlag Berlin Heidelberg 2004.