A UML extension for modeling break-glass policies

Abstract
In emergency situations, certain subjects sometimes have to perform important tasks although they are usually not authorized to perform these tasks. Break-glass policies have been introduced as a sophisticated exception handling mechanism to resolve such situations. They enable selected subjects to break or override the standard access control policies of an information system in a controlled manner. However, modeling support for break-glass policies is largely missing. In this paper, we present an approach to provide modeling support for break-glass policies in the context of process-related RBAC models. In particular, we provide a UML2 extension that allows for the integrated modeling of processes and break-glass policies. Additional constraints are formally specified via OCL. We also implemented our approach as an extension to the BusinessActivity library and runtime engine. The source code of our implementation is available for download.
  • Citation
  • BibTeX
Schefer-Wenzl, S. & Strembeck, M., (2012). A UML extension for modeling break-glass policies. In: Rinderle-Ma, S. & Weske, M. (Hrsg.), EMISA 2012 – Der Mensch im Zentrum der Modellierung. Bonn: Gesellschaft für Informatik e.V.. (S. 25-38).
@inproceedings{mci/Schefer-Wenzl2012,
author = {Schefer-Wenzl, Sigrid AND Strembeck, Mark},
title = {A UML extension for modeling break-glass policies},
booktitle = {EMISA 2012 – Der Mensch im Zentrum der Modellierung},
year = {2012},
editor = {Rinderle-Ma, Stefanie AND Weske, Mathias} ,
pages = { 25-38 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
DateienGroesseFormatAnzeige
25.pdf702.2Kb PDF View/Open

Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback

More Info

ISBN: 978-3-88579-600-8
ISSN: 1617-5468
xmlui.MetaDataDisplay.field.date: 2012
Language: en (en)
Content Type: Text/Conference Paper
Collections

Show full item record