Specification and Validation of Authorisation Constraints Using UML and OCL
نویسندگان
چکیده
Authorisation constraints can help the policy architect design and express higher-level security policies for organisations such as financial institutes or governmental agencies. Although the importance of constraints has been addressed in the literature, there does not exist a systematic way to validate and test authorisation constraints. In this paper, we attempt to specify non-temporal constraints and historybased constraints in Object Constraint Language (OCL) which is a constraint specification language of Unified Modeling Language (UML) and describe how we can facilitate the USE tool to validate and test such policies. We also discuss the issues of identification of conflicting constraints and missing constraints.
منابع مشابه
Equational Specification of UML+OCL Static Class Diagrams
In this paper we propose an equational specification of UML+OCL static class diagrams that provides a formal foundation for automatically validating UML object diagrams with respect to OCL constraints. Basically, class and object UML diagrams are specified as membership equational theories, and OCL expressions are represented as terms over extensions of those theories. Then, validating object d...
متن کاملUSE: A UML-based specification environment for validating UML and OCL
The Unified Modeling Language (UML) is accepted today as an important standard for developing software. UML tools however provide little support for validating and checking models in early development phases. There is also no substantial support for the Object Constraint Language (OCL). We present an approach for the validation of UML models and OCL constraints based on animation and certificat...
متن کاملITP/OCL: A Rewriting-Based Validation Tool for UML+OCL Static Class Diagrams
In this paper we present the ITP/OCL tool, a rewritingbased tool that supports automatic validation of UML class diagrams with respect to OCL constraints. Its implementation is directly based on the equational specification of UML+OCL class diagrams. It is written entirely in Maude making extensive use of its reflective capabilities. We also give notice of the Visual ITP/OCL, a Java graphical i...
متن کاملTowards Verifying Java Realizations of Ocl-constrained Design Models Using Jml
The Object Constraint Language OCL is a formal textual notation that could be used for placing constraints on the modelling elements that occur in UML diagrams. Constraints include invariants on classes and types, and preconditions and postconditions of operations. OCL was designed to be used in conjunctions with UML diagrams resulting in more precise object-oriented designs. The Java Modelling...
متن کاملChecking UML Model Consistency
UML is nowadays a de-facto standard for design and development of (object-oriented) software. With version 2.0 UML has achieved a more precise formal semantics. The same happened to OCL, a specification language which is an integral part of UML that allows to embed software contracts in the model. In this work we propose an approach for a static verification of consistency of UML models which r...
متن کامل