Leveraging UML for Access Control Engineering in a Collaboration on Duty and Adaptive Workflow Model that Extends NIST RBAC

Leveraging UML for Access Control Engineering in a Collaboration on Duty and Adaptive Workflow Model that Extends NIST RBAC

Solomon Berhe (University of Connecticut, USA), Steven A. Demurjian (University of Connecticut, USA), Jaime Pavlich-Mariscal (Pontificia Universidad Javeriana, Colombia), Rishi Kanth Saripalle (University of Connecticut, USA) and Alberto De la Rosa Algarín (University of Connecticut, USA)
Copyright: © 2016 |Pages: 29
DOI: 10.4018/978-1-5225-0448-1.ch004
OnDemand PDF Download:
$30.00
List Price: $37.50

Abstract

To facilitate collaboration in emerging domains such as the Patient-Centered Medical Home (PCMH), the authors' prior work extended the NIST Role-Based Access Control (RBAC) model to yield a formal Collaboration on Duty and Adaptive Workflow (CoD/AWF) model. The next logical step is to place this work into the context of an integrated software process for security engineering from design through enforcement. Towards this goal, the authors promote a secure software engineering process that leverages an extended Unified Modeling Language (UML) to visualize CoD/AWF policies to achieve a solution that separates concerns while still providing the means to securely engineer dynamic collaborations for applications such as the PCMH.
Chapter Preview
Top

Background

This Section presents the two main background work our chapter is based on. In particular, this includes the work on integrating access control into UML as well as the concept of CoD/AWF. To better illustrate our work, this section includes a health care scenario which will be re-used throughout the remainder of this chapter.

Complete Chapter List

Search this Book:
Reset