Indian Journal of Science and Technology

Open Access Open Access  Restricted Access Subscription Access

Formal Validation of Erratic Delegation of Roles With UML And OCL


Affiliations
1 Department of Software Engineering, Mehran University of Engineering and Technology, Jamshoro, Sindh – 76062, Pakistan
 

Objective: In emergency situations, when the responsible users for a task in the organization are not available or inadequate, the task should be delegated to eligible candidates satisfactorily. Method: In this paper, we proposed a mechanism for the specification and validation of constraints which can be applied during erratic delegation of roles. We have used Object Constraint Language (OCL) for specification of constraints. Here, UML Specification Environment (USE) tool is employed for the validation of the constraints that will be verified before and after the role delegation of the appropriate users. Findings: Focusing on the present condition of every single organization, there are a number of employees from all over the world who face many problems when distinct tasks are assigned to them. The entire scenario becomes more confused when a simple task is transferred to a user for the delegation, whose conditions need to be explicitly defined. Our delegation model helps to solve this. The results of the proposed delegation mechanism are promising since it is ensured that delegation occurs only when the pre and post conditions are satisfied. The user, who is being granted the role during an emergency, enjoys the same authority as being enjoyed by the actual user. The proposed model can be employed in a variety of situations for role/job delegation, when the organization requires a proper delegation mechanism for job assignment. Novelty/Improvements: In this paper, a validation mechanism has been proposed for the delegation of job roles to and from users with certain conditions and its validation has been carried. Here delegation process is being implemented over two different organizations and results are conferred.
User

  • Ferraiolo DF, Sandhu R, Gavrila S, Kuhn DR, Chandramouli R. Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security (TISSEC). 2001; 4(3):224–74. https://doi.org/10.1145/501978.501980.

  • Zhang L, Ahn GJ, Chu BT. A rule-based framework for role-based delegation and revocation. ACM Transactions on Information and System Security (TISSEC). 2003; 6(3):404–41. https://doi.org/10.1145/937527.937530.

  • Nguyen TA, Su L, Inman G, Chadwick D. Flexible and manageable delegation of authority in RBAC. Advanced Information Networking and Applications Workshops, AINAW'07. 21st International Conference. 2007; 2:453–8. https://doi.org/10.1109/AINAW.2007.187.

  • Qiu W. Exploring user-to-role delegation in role-based access control. Eighth World Congress on the Management of eBusiness (WCMeB); 2007. p. 1–21. https://doi.org/10.1109/WCMEB.2007.47.

  • Memon MA, Hashmani M, Sohr K. Validation of temporary delegation and revocation of roles with uml and ocl. International Journal of Computer Theory and Engineering. 2010; 2(1):1–6. https://doi.org/10.7763/IJCTE.2010.V2.107.

  • Warmer JB, Kleppe AG. The object constraint language: getting your models ready for MDA. Addison-Wesley Professional. Computer; 2003. p. 1–206.

  • The USE tool: A UML-based specification environment [Internet]. [cited 2018 Jul 09]. Available from: https://sourceforge.net/projects/useocl/.

  • Sohr K, Drouineaud M, Ahn GJ, Gogolla M. Analyzing and managing role-based access control policies. IEEE Transactions on Knowledge and Data Engineering. 2008; 20(7):924–39. https://doi.org/10.1109/TKDE.2008.28.

  • Zhang X, Oh S, Sandhu R. PBDM: a flexible delegation model in RBAC. Proceedings of the Eighth ACM Symposium on Access Control Models and Technologies; 2003. p. 149–57. https://doi.org/10.1145/775412.775431.

  • Wainer J, Kumar A. A fine-grained, controllable, user-to-user delegation method in RBAC. Proceedings of the tenth ACM symposium on Access control models and technologies; 2005. p. 59–66. https://doi.org/10.1145/1063979.1063991.

  • Barka E, Sandhu R. Framework for role-based delegation models. Computer Security Applications. ACSAC'00. 16th Annual Conference; 2000. p. 168–76. https://doi.org/10.1109/ACSAC.2000.898870.


Abstract Views: 196

PDF Views: 0




  • Formal Validation of Erratic Delegation of Roles With UML And OCL

Abstract Views: 196  |  PDF Views: 0

Authors

Saman Shahid Qureshi
Department of Software Engineering, Mehran University of Engineering and Technology, Jamshoro, Sindh – 76062, Pakistan
Mohsin Memon
Department of Software Engineering, Mehran University of Engineering and Technology, Jamshoro, Sindh – 76062, Pakistan
Tehseen Hafiz
Department of Software Engineering, Mehran University of Engineering and Technology, Jamshoro, Sindh – 76062, Pakistan
Pirah Memon
Department of Software Engineering, Mehran University of Engineering and Technology, Jamshoro, Sindh – 76062, Pakistan

Abstract


Objective: In emergency situations, when the responsible users for a task in the organization are not available or inadequate, the task should be delegated to eligible candidates satisfactorily. Method: In this paper, we proposed a mechanism for the specification and validation of constraints which can be applied during erratic delegation of roles. We have used Object Constraint Language (OCL) for specification of constraints. Here, UML Specification Environment (USE) tool is employed for the validation of the constraints that will be verified before and after the role delegation of the appropriate users. Findings: Focusing on the present condition of every single organization, there are a number of employees from all over the world who face many problems when distinct tasks are assigned to them. The entire scenario becomes more confused when a simple task is transferred to a user for the delegation, whose conditions need to be explicitly defined. Our delegation model helps to solve this. The results of the proposed delegation mechanism are promising since it is ensured that delegation occurs only when the pre and post conditions are satisfied. The user, who is being granted the role during an emergency, enjoys the same authority as being enjoyed by the actual user. The proposed model can be employed in a variety of situations for role/job delegation, when the organization requires a proper delegation mechanism for job assignment. Novelty/Improvements: In this paper, a validation mechanism has been proposed for the delegation of job roles to and from users with certain conditions and its validation has been carried. Here delegation process is being implemented over two different organizations and results are conferred.

References





DOI: https://doi.org/10.17485/ijst%2F2018%2Fv11i31%2F130889