eprintid: 1574
rev_number: 9
eprint_status: archive
userid: 31
dir: disk0/00/00/15/74
datestamp: 2013-05-02 12:47:10
lastmod: 2013-05-02 12:47:10
status_changed: 2013-05-02 12:47:10
type: book_section
metadata_visibility: show
creators_name: Bush, Marianne
creators_name: Koch, Nora
creators_name: Masi, Massimiliano
creators_name: Pugliese, Rosario
creators_name: Tiezzi, Francesco
creators_id: 
creators_id: 
creators_id: 
creators_id: 
creators_id: francesco.tiezzi@imtlucca.it
title: Towards Model-Driven Development of Access Control Policies for Web Applications
ispublished: pub
subjects: QA75
divisions: CSA
full_text_status: public
keywords: Security, Model-driven development, Web engineering
abstract: We introduce a UML-based notation for graphically modeling
systems’ security aspects in a simple and intuitive
way and a model-driven process that transforms graphical
specifications of access control policies in XACML. These
XACML policies are then translated in FACPL, a policy
language with a formal semantics, and the resulting policies
are evaluated by means of a Java-based software tool.
date: 2012
date_type: published
number: 4
publisher: Springer
id_number: 10.1145/2422498.2422502
refereed: TRUE
book_title: Proceedings of 1st International Workshop on Model-Driven Security (MDsec)
citation:   Bush, Marianne and Koch, Nora and Masi, Massimiliano and Pugliese, Rosario and Tiezzi, Francesco  Towards Model-Driven Development of Access Control Policies for Web Applications.   In:  Proceedings of 1st International Workshop on Model-Driven Security (MDsec).   Springer.       (2012)  
document_url: http://eprints.imtlucca.it/1574/1/mdsec2012_submission_10.pdf