posted on 2012-11-29, 15:10authored byMahdi Derakhshanmanesh, Mazeiar Salehie, Ebert Jürgen
Access control systems are deployed in organizations to protect
critical cyber-physical assets. These systems need to
be adjustable to cope with di erent contextual factors like
changes in resources or requirements. Still, adaptation is
often performed manually. In addition, di erent product
variants of access control systems need to developed together
systematically. These characteristics demand a product
line engineering approach for enhanced reuse. Moreover,
to cope with uncertainty at runtime, adaptivity, i.e.,
switching between variations in a cyber-physical domain (recon
guration) and adjusting access policies (behavior adaptation),
needs to be supported.
In this position paper, we sketch an approach for engineering
dynamic access control systems based on core concepts
from dynamic software product lines and executable runtime
models. The proposed solution is presented and rst
experiences are discussed along a sample dynamic software
product line in the role-based access control domain.
History
Publication
SPLC '12 Proceedings of the 16th International Software Product Line Conference;2, pp. 151-155