Model of security for object-oriented and object-attributed applications

The article describes two approaches for control access rights based on role approach (RBAC) and the use of tables (lists) access rights (ACL). At first, an overview of modern approaches to information security and control user access rights of applications with different architectures is provided. After that, two author's methods of data protection is described. The first approach was developed for the protection of object-oriented applications, the second approach was developed for object-attribute applications used to operating network (graph) databases and knowledge bases. The focus of attention is the first author's approach based on the description of access rights for classes, attributes of classes and objects that has a certain criterion. The approach is implemented by the use of a class hierarchy, composition and structure describing in detail in the article. The article gives examples of specific information systems developed by the first author: information system for scientific conferences that was repeatedly used at the conference "Object systems" (objectsystems.ru) and information system of the beauty salon. Further focus is on the second approach required development of new technique to the information security of network (graph) information structures. The approach developed by second author fully duplicates the functionality of the first approach. In particular, it provides permissions copy when copying of the network data structure, just as in the object-oriented paradigm is a transfer of the properties of parent to child class; the article gives a detailed description of such mechanism. For access control, the method involves the use of a special virtual device. Information about access rights is linked to the node network (graph) if restrict access is needed.

Security of information systems, Object-oriented applications, Object System Metamodel, Model of Permissions, object-attribute approach

1. Nagaratnam N., Nadalin A., Hondo M., McIntosh M., Austel P. Business-driven application security: from modeling to managing secure applications. IBM Systems Journal, vol. 44, issue 4, 2005, pp. 847-867.

2. Xiao L., Peet A., Lewis P., Dashmapatra S., Saez C., Croitoru M., Vicente J., Gonzalez-Velez H., Lluch i Ariet M. An Adaptive Security Model for Multi-agent Systems and Application to a Clinical Trials Environment. 31st Annual International Computer Software and Applications Conference, COMPSAC 2007, 24-27 July 2007, Beijing, China, 2007, pp. 261-268.

3. Fengyu Zhao, Xin Peng, Wenyun Zhao. Multi-Tier Security Feature Modeling for Service-Oriented Application Integration. Eighth IEEE/ACIS International Conference on Computer and Information Science, ICIS 2009, 1-3 June 2009, Shanghai, China, 2009, pp. 1178-1183.

4. Saleem M.Q., Jaafar J., Hassan M.F. Model Driven Security Framework for Definition of Security Requirements for SOA Based Applications. 2010 International Conference on Computer Applications and Industrial Electronics (ICCAIE), 5-8 Dec. 2010, Kuala Lumpur, 2010, pp. 266-270.

5. Shiroma Y., Washizaki H., Fukazawa Y., Kubo A., Yoshioka N. Model-Driven Security Patterns Application Based on Dependences among Patterns. ARES '10 International Conference on Availability, Reliability, and Security, 15-18 Feb. 2010, Krakow, Poland, 2010, pp. 555-559.

6. Salini P., Kanmani S. Application of Model Oriented Security Requirements Engineering Framework for Secure E-Voting. 2012 CSI Sixth International Conference on Software Engineering (CONSEG), 5-7 Sept. 2012, Indore, 2012, pp. 1-6.

7. Oleynik P.P. Resentating metamodel of object system in a relational database. Izvestiya vysshikh uchebnykh zavedeniy. Severo-Kavkazskiy region [UNIVERSITY NEWS. NORTH-CAUCASIAN REGION]. Spetsvypusk «Matematicheskoe modelirovanie i komp'yuternye tekhnologii» [Special Issue "Mathematical modeling and computer technologies»], pp. 3-8, 2005 (in Russian).

8. Oleynik P.P. Implementation of the Hierarchy of Atomic Literal Types in an Object System Based of RDBMS. Programming and Computer Software, vol. 35, no.4, pp. 235-240, 2009.

9. Oleynik P.P. Class Hierarchy of Object System Metamodel. Ob’ektnye sistemy – 2012: materialy VI Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 maja 2012 g. [Object Systems – 2012: Proceedings of the Sixth International Theoretical and Practical Conference. Rostov-on-Don, Russia, 10-12 May, 2012]. pp. 37-40 (In Russian). Available at: http://objectsystems.ru/files/2012/Object_Systems_2012_Proceedings.pdf

10. Oleynik P.P. Domain-driven design of the database structure in terms of object system metamodel. Ob’ektnye sistemy – 2012: materialy VI Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 maja 2012 g. [Object Systems – 2014: Proceedings of the Eighth International Theoretical and Practical Conference, Rostov-on-Don, 10-12 May, 2014], pp. 41-46 (In Russian). Available at: http://objectsystems.ru/files/2014/Object_Systems_2014_Proceedings.pdf

11. Oleynik P.P. Using metamodel of object system for domain-driven design the database structure // Proceedings of 12th IEEE East-West Design & Test Symposium (EWDTS’2014), Kiev, Ukraine, September 26 – 29, 2014, pp. 79-86. DOI: 10.1109/EWDTS.2014.7027052

12. Oleynik P.P. Unified Metamodel of Object System. Ob’ektnye sistemy – 2015: materialy X Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 maja 2015 g. [Object Systems – 2015: Proceedings of X International Theoretical and Practical Conference, Rostov-on-Don, 10-12 May, 2015], pp. 79-85. Available at: http://objectsystems.ru/files/2015/Object_Systems_2015_Proceedings.pdf

13. Oleynik P.P. The Elements of Development Environment for Information Systems Based on Metamodel of Object System. Biznes-informatika [Business Informatics], №4(26), pp. 69-76, 2013 (In Russian). http://bijournal.hse.ru/data/2014/01/16/1326593606/1BI%204(26)%202013.pdf

14. Oleynik P.P., Kurakov Yu.I. The Concept Creation Service Corporate Information Systems of Economic Industrial Energy Cluster. Prikladnaja informatika [Applied Informatics], №6. pp. 5-23, 2014 (In Russian).

15. Kurakov Y. I., Oleynik P. P. Implementation method a unified information system of economic production and energy cluster in coal industry. Gornyj informacionno-analiticheskij bjulleten' [Mining information-analytical Bulletin, no. 6, pp. 260-273, 2015 (In Russian).

16. Borodina N.E., Oleynik P.P., Galiaskarov E.G. Reengineering of Object Model by the Example of Information System for Cataloging Scientific Articles for International Conferences. Ob’ektnye sistemy – 2014 (zimnjaja sessija): materialy IX Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 dekabrja 2014 g. [Object Systems – 2014 (Winter session): Proceedings of IX International Theoretical and Practical Conference, Rostov-on-Don, 10-12 December, 2014], pp. 17-23 (In Russian). Available at: http://objectsystems.ru/files/2014WS/Object_Systems_2014_Winter_session_Proceedings.pdf

17. Kozlova K.O., Borodina N.E., Galiaskarov E.G., Oleynik P.P. Domain-Driven Design of Information System of a Beauty Salon in Terms of Unified Metamodel of Object System. Ob’ektnye sistemy – 2015: materialy X Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 maja 2015 g. [Object Systems – 2015: Proceedings of X International Theoretical and Practical Conference, Rostov-on-Don, 10-12 May, 2015], pp. 86-90 (In Russian). Available at:http://objectsystems.ru/files/2015/Object_Systems_2015_Proceedings.pdf

18. Oleynik P.P, Yuzefova S.Yu., Nikolenko O.I. Experience in Designing an Information System for Fast Food Restaurants. Ob’ektnye sistemy – 2014 (zimnjaja sessija): materialy IX Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 dekabrja 2014 g. [Object Systems – 2014 (Winter session): Proceedings of IX International Theoretical and Practical Conference, Rostov-on-Don, 10-12 December, 2014], pp. 12-16 (In Russian). Available at: http://objectsystems.ru/files/2014WS/Object_Systems_2014_Winter_session_Proceedings.pd

19. Nikolenko O.I., Oleynik P.P, Yuzefova S.Yu. Prototyping and Implementation of Graphical Order Form for the Information System of Fast Food Restaurants. Ob’ektnye sistemy – 2015: materialy X Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 maja 2015 g. [Object Systems – 2015: Proceedings of X International Theoretical and Practical Conference, Rostov-on-Don, 10-12 May, 2015], pp. 68-72 (In Russian). Available at: http://objectsystems.ru/files/2015/Object_Systems_2015_Proceedings.pdf

20. Pavel P. Oleynik, Olga I. Nikolenko, Svetlana Yu. Yuzefova. Information System for Fast Food Restaurants. Engineering and Technology, vol. 2, no. 4, 2015, pp. 186-191. Available at: http://article.aascit.org/file/pdf/9020895.pdf

21. P. B. Panfilow, S. M. Salibekyan Dataflow Computing and its Impact on Automation Applications. Procedia Engineering, vol. 69, 2014., pp. 1286-1295. URL: http://www.sciencedirect.com/science/article/pii/S1877705814003671

22. Pavel P. Oleynik, Sergey M. Salibekyan. The Approaches to Implementation of Patterns of Static Object Models for Database Applications: Existing Solutions and Unified Testing Model. International Journal of Applied Engineering Research, vol. 10, no. 24 2014, pp 45513-45516.

23. Salibekyan S.M., Panfilov P. B Object-Attribute Architecture is a New Approach to Object Systems Developing. Informacionnye tehnologii [Information technologies], no.2, 2012, pp 8-14.

24. Salibekyan S. M., Belousov, A. Yu., Graph Database Implemented by Object-Attribute Approach. Ob’ektnye sistemy – 2014 (zimnjaja sessija): materialy IX Mezhdunarodnoj nauchno-prakticheskoj konferencii, Rostov-na-Donu, 10-12 dekabrja 2014 g. [Object Systems – 2014 (Winter session): Proceedings of IX International Theoretical and Practical Conference, Rostov-on-Don, 10-12 December, 2014], pp. 70-75 (In Russian). Available at: http://objectsystems.ru/files/2014WS/Object_Systems_2014_Winter_session_Proceedings.pdf