An MDA Compliant Approach for Designing Secure Data Warehouses

2009 ◽  
pp. 495-503
Author(s):  
Rodolfo Villarroel ◽  
Eduardo Fernández-Medina ◽  
Juan Trujillo ◽  
Mario Piattini
Keyword(s):  
Real World ◽  
Conceptual Modeling ◽  
Security Requirements ◽  
Data Warehouses ◽  
Model Driven ◽  
Secure Data ◽  
Security Information ◽  
Target Platform ◽  
Compliant Approach ◽  
User Security

This chapter presents an approach for designing secure Data Warehouses (DWs) that accomplish the conceptual modeling of secure DWs independently from the target platform where the DW has to be implemented, because our complete approach follows the Model Driven Architecture (MDA) and the Model Driven Security (MDS). In most of real world DW projects, the security aspects are issues that usually rely on the DBMS administrators. We argue that the design of these security aspects should be considered together with the conceptual modeling of DWs from the early stages of a DW project, and being able to attach user security information to the basic structures of a Multidimensional (MD) model. In this way, we would be able to generate this information in a semi or automatic way into a target platform and the final DW will better suits the user security requirements.

An MDA Compliant Approach for Designing Secure Data Warehouses

2011 ◽  
pp. 261-272
Author(s):  
Villarroel Rodolfo ◽  
Fernández-Medina Eduardo ◽  
Trujillo Juan ◽  
Piattini Mario
Keyword(s):  
Real World ◽  
Conceptual Modeling ◽  
Security Requirements ◽  
Data Warehouses ◽  
Model Driven ◽  
Secure Data ◽  
Security Information ◽  
Target Platform ◽  
Compliant Approach ◽  
User Security

This chapter presents an approach for designing secure Data Warehouses (DWs) that accomplish the conceptual modeling of secure DWs independently from the target platform where the DW has to be implemented, because our complete approach follows the Model Driven Architecture (MDA) and the Model Driven Security (MDS). In most of real world DW projects, the security aspects are issues that usually rely on the DBMS administrators. We argue that the design of these security aspects should be considered together with the conceptual modeling of DWs from the early stages of a DW project, and being able to attach user security information to the basic structures of a Multidimensional (MD) model. In this way, we would be able to generate this information in a semi or automatic way into a target platform and the final DW will better suits the user security requirements.

An MDA Compliant Approach for Designing Secure Data Warehouses

2009 ◽  
pp. 637-647
Author(s):  
Rodolfo Villarroel ◽  
Eduardo Fernández-Medina ◽  
Juan Trujillo ◽  
Mario Piattini
Keyword(s):  
Real World ◽  
Conceptual Modeling ◽  
Security Requirements ◽  
Data Warehouses ◽  
Model Driven ◽  
Secure Data ◽  
Security Information ◽  
Target Platform ◽  
Compliant Approach ◽  
User Security

This chapter presents an approach for designing secure Data Warehouses (DWs) that accomplish the conceptual modeling of secure DWs independently from the target platform where the DW has to be implemented, because our complete approach follows the Model Driven Architecture (MDA) and the Model Driven Security (MDS). In most of real world DW projects, the security aspects are issues that usually rely on the DBMS administrators. We argue that the design of these security aspects should be considered together with the conceptual modeling of DWs from the early stages of a DW project, and being able to attach user security information to the basic structures of a Multidimensional (MD) model. In this way, we would be able to generate this information in a semi or automatic way into a target platform and the final DW will better suits the user security requirements.

Model-driven multidimensional modeling of secure data warehouses

2007 ◽  
Vol 16 (4) ◽  
pp. 374-389 ◽  
Author(s):  
Eduardo Fernández-Medina ◽  
Juan Trujillo ◽  
Mario Piattini
Keyword(s):  
Data Warehouses ◽  
Model Driven ◽  
Multidimensional Modeling ◽  
Secure Data

scholarly journals A Method for Model-Driven Information Flow Security

2012 ◽  
pp. 199-229 ◽  
Author(s):  
Fredrik Seehusen ◽  
Ketil Stølen
Keyword(s):  
Software Development ◽  
Information Flow ◽  
System Architecture ◽  
Security Requirements ◽  
State Machines ◽  
Flow Properties ◽  
Information Flow Security ◽  
Software Developer ◽  
Model Driven ◽  
Secure Information

We present a method for software development in which information flow security is taken into consideration from start to finish. Initially, the user of the method (i.e., a software developer) specifies the system architecture and selects a set of security requirements (in the form of secure information flow properties) that the system must adhere to. The user then specifies each component of the system architecture using UML inspired state machines, and refines/transforms these (abstract) state machines into concrete state machines. It is shown that if the abstract specification adheres to the security requirements, then so does the concrete one provided that certain conditions are satisfied.

An MDA Approach and QVT Transformations for the Integrated Development of Goal-Oriented Data Warehouses and Data Marts

2013 ◽  
pp. 44-71
Author(s):  
Jesús Pardillo ◽  
Jose-Norberto Mazón ◽  
Juan Trujillo
Keyword(s):  
Data Warehousing ◽  
Complete Solution ◽  
Requirement Engineering ◽  
User Requirements ◽  
Data Warehouses ◽  
Integrated Development ◽  
Model Driven ◽  
Organizational Challenges ◽  
Uml Profiles ◽  
Data Marts

To customize a data warehouse, many organizations develop concrete data marts focused on a particular department or business process. However, the integrated development of these data marts is an open problem for many organizations due to the technical and organizational challenges involved during the design of these repositories as a complete solution. In this article, the authors present a design approach that employs user requirements to build both corporate data warehouses and data marts in an integrated manner. The approach links information requirements to specific data marts elicited by using goal-oriented requirement engineering, which are automatically translated into the implementation of corresponding data repositories by means of model-driven engineering techniques. The authors provide two UML profiles that integrate the design of both data warehouses and data marts and a set of QVT transformations with which to automate this process. The advantage of this approach is that user requirements are captured from the early development stages of a data-warehousing project to automatically translate them into the entire data-warehousing platform, considering the different data marts. Finally, the authors provide screenshots of the CASE tools that support the approach, and a case study to show its benefits.

Designing Secure Data Warehouses

2008 ◽  
pp. 679-692
Author(s):  
Rodolfo Villarroel ◽  
Eduardo Fernandez-Medina ◽  
Juan Trujillo ◽  
Mario Piattini
Keyword(s):  
Conceptual Modeling ◽  
Systems Design ◽  
Specific Information ◽  
Sensitive Information ◽  
Data Warehouses ◽  
Personal Beliefs ◽  
Operational Environment ◽  
Sensitive Data ◽  
Secure Systems ◽  
Secure Systems Design

Organizations depend increasingly on information systems, which rely upon databases and data warehouses (DWs), which need increasingly more quality and security. Generally, we have to deal with sensitive information such as the diagnosis made on a patient or even personal beliefs or other sensitive data. Therefore, a final DW solution should consider the final users that can have access to certain specific information. Unfortunately, methodologies that incorporate security are based on an operational environment and not on an analytical one. Therefore, they do not include security into the multidimensional approaches to work with DWs. In this chapter, we present a comparison of six secure-systems design methodologies. Next, an extension of the UML that allows us to specify main security aspects in the multidimensional conceptual modeling is proposed, thereby allowing us to design secure DWs. Finally, we present how the conceptual model can be implemented with Oracle Label Security (OLS10g).

Designing Secure Data Warehouses

2008 ◽  
pp. 1048-1061
Author(s):  
Rodolfo Villarroel ◽  
Eduardo Fernandez-Medina ◽  
Juan Trujillo ◽  
Mario Piattini
Keyword(s):  
Conceptual Modeling ◽  
Systems Design ◽  
Specific Information ◽  
Sensitive Information ◽  
Data Warehouses ◽  
Personal Beliefs ◽  
Operational Environment ◽  
Sensitive Data ◽  
Secure Systems ◽  
Secure Systems Design

Organizations depend increasingly on information systems, which rely upon databases and data warehouses (DWs), which need increasingly more quality and security. Generally, we have to deal with sensitive information such as the diagnosis made on a patient or even personal beliefs or other sensitive data. Therefore, a final DW solution should consider the final users that can have access to certain specific information. Unfortunately, methodologies that incorporate security are based on an operational environment and not on an analytical one. Therefore, they do not include security into the multidimensional approaches to work with DWs. In this chapter, we present a comparison of six secure-systems design methodologies. Next, an extension of the UML that allows us to specify main security aspects in the multidimensional conceptual modeling is proposed, thereby allowing us to design secure DWs. Finally, we present how the conceptual model can be implemented with Oracle Label Security (OLS10g).

Sign in / Sign up

Export Citation Format

Share Document