Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations
| Autor: | Gábor Bergmann, Csaba Debreceni, István Ráth, Dániel Varró |
|---|---|
| Rok vydání: | 2017 |
| Předmět: |
Correctness
business.industry Computer science Distributed computing Complex system 020207 software engineering Access control 02 engineering and technology Modeling and Simulation Schema (psychology) Control system Change propagation Scalability 0202 electrical engineering electronic engineering information engineering Confidentiality business Software |
| Zdroj: | Software & Systems Modeling. 18:1737-1769 |
| ISSN: | 1619-1374 1619-1366 |
| Popis: | Large-scale model-driven system engineering projects are carried out collaboratively. Engineering artefacts stored in model repositories are developed in either offline (checkout–modify–commit) or online (GoogleDoc-style) scenarios. Complex systems frequently integrate models and components developed by different teams, vendors and suppliers. Thus, confidentiality and integrity of design artefacts need to be protected in accordance with access control policies. We propose a secure collaborative modelling approach where fine-grained access control for models is strictly enforced by bidirectional model transformations. Collaborators obtain filtered local copies of the model containing only those model elements which they are allowed to read; write access control policies are checked on the server upon submitting model changes. We present a formal collaboration schema which provenly guarantees certain correctness constraints, and its adaption to online scenarios with on-the-fly change propagation and the integration into existing version control systems to support offline scenarios. The approach is illustrated, and its scalability is evaluated using a case study of the MONDO EU project. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full text from SpringerLink