| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Security-Driven Model-Based Dynamic Adaptation
Abstract : Security is a key-challenge for software engineering, especially when considering access control and software evolutions. No satisfying solution exists for maintaining the alignment of access control policies with the business logic. Current implementations of access control rely on the separation between the policy and the application code. In practice, this separation is not so strict and some rules are hard-coded within the application, making the evolution of the policy difficult. We propose a new methodology for implementing security-driven applications. From a policy defined by a security expert, we generate an architectural model, reflecting the access control policy. We leverage the advances in the models@runtime domain to keep this model synchronized with the running system. When the policy is updated, the architectural model is updated, which in turn reconfigures the running system. As a proof of concept, we apply the approach to the development of a library management system.
Cited literature [20 references]
https://hal.inria.fr/inria-00538500
Contributor : Didier Vojtisek <>
Submitted on : Monday, November 22, 2010 - 4:10:19 PM
Last modification on : Friday, July 10, 2020 - 4:01:24 PM
Document(s) archivé(s) le : Wednesday, February 23, 2011 - 3:28:10 AM
Contributor : Didier Vojtisek <>
Submitted on : Monday, November 22, 2010 - 4:10:19 PM
Last modification on : Friday, July 10, 2020 - 4:01:24 PM
Document(s) archivé(s) le : Wednesday, February 23, 2011 - 3:28:10 AM
File
Morin10b.pdf
Files produced by the author(s)