Verifying Access Control Properties with Design by Contract: Framework and Lessons Learned.
Carlos E. Rubio-MedranoGail-Joon AhnKarsten SohrPublished in: COMPSAC (2013)
Keyphrases
- lessons learned
- access control
- case study
- fine grained
- participatory design
- policy enforcement
- security policies
- design process
- data security
- role based access control model
- rbac model
- databases
- dynamic access control
- identity management
- security mechanisms
- design principles
- software architecture
- database security
- user centric
- role assignment
- data sets