Please use this identifier to cite or link to this item
|title: ||ACADA: Access Control-driven Architecture with Dynamic Adaptation|
|authors: ||Pereira, Óscar Narciso Mortágua|
Aguiar, Rui L.
Santos, Maribel Yasmina
|keywords: ||Access control|
|issue date: ||Jul-2012|
|publisher: ||Knowledge Systems Institute Graduate School|
|abstract: ||Programmers of relational database applications use software solutions (Hibernate, JDBC, LINQ, ADO.NET) to ease the development process of business tiers. These software
solutions were not devised to address access control policies, much less for evolving access control policies, in spite of their
unavoidable relevance. Currently, access control policies, whenever implemented, are enforced by independent components leading to a separation between policies and their enforcement. This paper proposes a new approach based on an architectural model referred to here as the Access Controldriven
Architecture with Dynamic Adaptation (ACADA).
Solutions based on ACADA are automatically built to statically enforce access control policies based on schemas of Create, Read, Update and Delete (CRUD) expressions. Then, CRUD expressions are dynamically deployed at runtime driven by established access control policies. Any update in the policies is followed by an adaptation process to keep access control mechanisms aligned with the policies to be enforced. A proof of concept based on Java and Java Database Connectivity
(JDBC) is also presented.|
|publisher version/DOI: ||http://www.ksi.edu/seke/seke12.html|
|source: ||SEKE 2012 - The 24th International Conference on Software Engineering and Knowledge Engineering|
|appears in collections||DETI - Comunicações|
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.