Read about our access-control mechanisms for models. We rely on a new domain-specific language tailored to the definition of RBAC rules on models and on its enforcement thanks to the automatic generation of security compliant (virtual) views.
A common problem when modeling software systems is the lack of support to specify how to enforce privacy concerns in data models. In this post, we propose a profile to define and enforce privacy concerns in UML class diagrams. Models annotated with our profile can be used in model-driven methodologies to generate privacy-aware applications.
We propose the integration of digital watermarking techniques in the model-driven engineering development lifecycle as way to protect the intellectual property of your modeling artefacts in collaborative modeling scenarios
We (Domenico Bianculli, Jordi Cabot and Salvador Martínez) are organizing the first edition of SecureMDE 2018,
Our work helps security experts to visualize, (automatically) analyse and manipulate web security access-control policies, specially for Java EE
Automatic extraction of security policies that generates an RBAC security model from an existing database by analyzing its dictionary, views, triggers,...
Have you ever thought about using model transformations to specify and enforce access-control policies? Check how we do it
Definition of security policies is perceived as an important activity by developers, but at the same time they say it's complex and error prone. Read the full results
Help us (the researchers) to help you by answering this survey so that we can then target our security analysis algorithms to what you need!
Firewalls are a key element in network security. They are in charge of filtering the traffic
Apart from this JSON paper in the main ICWE conference, AtlanMod is presenting the paper Towards
(work presented at MDsec’12 co-authored with Salvador Martínez, Joaquin García-Alfaro, Frédéric Cuppens, Nora Cuppens-Boulahia and myself). Network security