Abstract

Conversational user interfaces (CUIs), such as chatbots, are becoming a common component of many software systems. Although they are evolving in many directions (such as advanced language processing features, thanks to new AI-based developments), less attention has been paid to access control and other security concerns associated with CUIs, which may pose a clear risk to the systems they interface with. In this paper, we apply model-driven techniques to model and enforce access-control policies in CUIs. In particular, we present a fully fledged framework to integrate the role-based access-control (RBAC) protocol into CUIs by: (1) modeling a set of access-control rules to specify permissions over the bot resources using a domain-specific language that tailors core RBAC concepts to the CUI domain; and (2) describing a mechanism to show the feasibility of automatically generating the infrastructure to evaluate and enforce the modeled access control policies at runtime.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Trusted Administration of Large-Scale Cryptographic Role-Based Access Control Systems
Lan Zhou ... Michael Hitchens
-
Lan Zhou, et. al.Lan Zhou ... Michael Hitchens
01 Jun 2012
A meta model for access control
David Ferraiolo ... Vijay Atluri
-
David Ferraiolo, et. al.David Ferraiolo ... Vijay Atluri
11 Jun 2008
Practical and efficient cryptographic enforcement of interval-based access control policies
Jason Crampton
ACM Transactions on Information and System Security | VOL. 14
Jason CramptonJason Crampton
01 May 2011
A Rigorous Framework for Specification, Analysis and Enforcement of Access Control Policies
Andrea Margheri ... Francesco Tiezzi
IEEE Transactions on Software Engineering | VOL. 45
Andrea Margheri, et. al.Andrea Margheri ... Francesco Tiezzi
01 Jan 2019
View more papers

More From: Software and Systems Modeling

Paper Title
Journal
Date
Author
Incremental model transformations with triple graph grammars for multi-version models and multi-version pattern matching
Matthias Barkowsky ... Holger Giese
Software and Systems Modeling | VOL. -
Matthias Barkowsky, et. al.Matthias Barkowsky ... Holger Giese
16 Nov 2024
Redescription mining-based business process deviance analysis
Engjëll Ahmeti ... Stefan Jablonski
Software and Systems Modeling | VOL. -
Engjëll Ahmeti, et. al.Engjëll Ahmeti ... Stefan Jablonski
16 Nov 2024
The sustainability assessment framework toolkit: a decade of modeling experience
Patricia Lago ... Ivano Malavolta
Software and Systems Modeling | VOL. -
Patricia Lago, et. al.Patricia Lago ... Ivano Malavolta
15 Nov 2024
Introduction to theme section on requirements formalisation
Kevin Lano ... Mohammad Aminu Umar
Software and Systems Modeling | VOL. -
Kevin Lano, et. al.Kevin Lano ... Mohammad Aminu Umar
13 Nov 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.