The modeling of RBAC model based on UML and XACML

Author

Li, Mengmeng ; Fan, Baode

Author_Institution

Sch. of Comput. Sci., Yantai Univ., Yantai, China

fYear

2012

fDate

19-20 May 2012

Firstpage

1533

Lastpage

1537

Abstract

In Role-based Access Control (RBAC) model, different roles have different permissions, users are treated as members of the respective roles and get the permissions of this roles. In this paper, we use the credit management system as an example, and make use of use-case diagrams, class diagrams and collaboration diagrams of the visualized UML to describe the visualization modeling of RBAC model; At the same time, we describe the access permissions between users and objects in the RBAC model, combined with XACML, realized the formal description of the access control policy, and integrate the RBAC model into this system to give it RBAC characteristics, and we also provide details on the modeling method and concrete realization of the RBAC model in this system. Our work will help developers understand the RBAC model more easily, and shorten the gap between security models and system development.

Keywords

Unified Modeling Language; XML; authorisation; diagrams; RBAC model; UML; XACML; access permissions; class diagrams; collaboration diagrams; credit management system; formal description; role-based access control model; security models; system development; use-case diagrams; visualization modeling; Authorization; Collaboration; Educational institutions; Servers; Unified modeling language; UML and XACML; credit management; model integration; role-permission;

fLanguage

English

Publisher

ieee

Conference_Titel

Systems and Informatics (ICSAI), 2012 International Conference on

Conference_Location

Yantai

Print_ISBN

978-1-4673-0198-5

Type

conf

DOI

10.1109/ICSAI.2012.6223330

Filename

6223330