TY - GEN
T1 - Leveraging UML for security engineering and enforcement in a collaboration on duty and adaptive workflow model that extends NIST RBAC
AU - Berhe, Solomon
AU - Demurjian, Steven
AU - Gokhale, Swapna
AU - Pavlich-Mariscal, Jaime
AU - Saripalle, Rishi
PY - 2011
Y1 - 2011
N2 - To facilitate collaboration in the patient-centered medical home (PCMH), our prior work extended the NIST role-based access control (RBAC) model to yield a formal collaboration on duty and adaptive workflow (COD/AWF) model. The next logical step is to place this work into the context of an integrated software process for security engineering from design through enforcement. Towards this goal, we promote a secure software engineering process that leverages an extended unified modeling language (UML) to visualize COD/AWF policies to achieve a solution that separates concerns while still providing the means to securely engineer dynamic collaborations for applications such as the PCMH. Once defined, these collaboration UML diagrams can be utilized to generate the corresponding aspect oriented policy code upon which the enforcement mechanism can be applied to at runtime.
AB - To facilitate collaboration in the patient-centered medical home (PCMH), our prior work extended the NIST role-based access control (RBAC) model to yield a formal collaboration on duty and adaptive workflow (COD/AWF) model. The next logical step is to place this work into the context of an integrated software process for security engineering from design through enforcement. Towards this goal, we promote a secure software engineering process that leverages an extended unified modeling language (UML) to visualize COD/AWF policies to achieve a solution that separates concerns while still providing the means to securely engineer dynamic collaborations for applications such as the PCMH. Once defined, these collaboration UML diagrams can be utilized to generate the corresponding aspect oriented policy code upon which the enforcement mechanism can be applied to at runtime.
UR - http://www.scopus.com/inward/record.url?scp=79960266684&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-22348-8_25
DO - 10.1007/978-3-642-22348-8_25
M3 - Conference contribution
AN - SCOPUS:79960266684
SN - 9783642223471
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 293
EP - 300
BT - Data and Applications Security and Privacy XXV - 25th Annual IFIP WG 11.3 Conference, DBSec 2011, Proceedings
T2 - 25th Annual WG 11.3 Conference on Data and Applications Security and Privacy, DBSec 2011
Y2 - 11 July 2011 through 13 July 2011
ER -