Enforcing fine-grained access control for secure collaborative modelling using bidirectional transformations

Csaba Debreceni, Gábor Bergmann, István Ráth, Dániel Varró
2017 Journal of Software and Systems Modeling  
Large-scale model-driven system engineering projects are carried out collaboratively. Engineering artefacts stored in model repositories are developed in either offline (checkout-modify-commit) or online (GoogleDocstyle) scenarios. Complex systems frequently integrate models and components developed by different teams, vendors and suppliers. Thus, confidentiality and integrity of design artefacts need to be protected in accordance with access control policies. We propose a secure collaborative
more » ... odelling approach where fine-grained access control for models is strictly enforced by bidirectional model transformations. Collaborators obtain filtered local copies of the model containing only those model elements which they are allowed to read; write access control policies are checked on the server upon submitting model changes. We present a formal Communicated by Dr. Jörg Kienzle and Alexander Pretschner. The original version of this article was revised due to a retrospective Open Access order. B Csaba Debreceni collaboration schema which provenly guarantees certain correctness constraints, and its adaption to online scenarios with on-the-fly change propagation and the integration into existing version control systems to support offline scenarios. The approach is illustrated, and its scalability is evaluated using a case study of the MONDO EU project.
doi:10.1007/s10270-017-0631-8 fatcat:lnmjwo4tbfautlyxxqv6lvlw7q