M.Sc. - Policy Conflict Detection Using Alloy

I have received my M.Sc. in April 2010. I have submitted my Thesis in partial fulfillment of the requirements for the degree Master Of Science in School of Interactive Arts and Technology (originally part of School of Computing Science) at Simon Fraser University. The title of the thesis is  "Policy conflict detection using Alloy: an explorative study".



My Thesis - Policy conflict detection using Alloy
Alternative resource via SFU



PML Metamodel Presentation in Alloy

You can find the excerpt below.

Keywords:
Policy conflict detection
Alloy
Policy Modelling Language
Policy Language

Abstract:
Policy conflicts are inevitable in policy-based systems. Handling conflicts is considered to be so vital in policy-based system, that several policy languages introduced built-in functions to handle them. In this thesis, we investigate an innovative approach for policy conflict detection. We investigate inclusion of MDE (Model Driven Engineering) concept in the policy conflict detection method. We inspect the practicality of analysing policies along with policy language’s meta-model in order to detect conflicts. We will examine feasibility of policy conflict detection using Alloy and PML (Policy Modelling Language). In our work, we systematically explore ways of modelling policies in Alloy. We have successfully introduced proper modelling approach for policy conflict detection and analysis of the policies according to PML meta-model. However, we have also shown that a one-pass analysis of detecting conflicts in addition to analysing policies according to the PML meta-model is not achievable.

B.Sc. - Web Service Security

I have received my B.Sc. in March 2010. I have submitted my Thesis (in Persian) in partial fulfillment of the requirements for the degree of Bachelor Of Science in the School of Computing Science at Iran University of Science and Technology. The title of the thesis was "Web Service Security (Implementation, management and utilizing of Web Service securely)".You can find the excerpt below.



Thesis - Web Service Security (Implementation, management and utilizing of Web Service securely)

Abstract:
With the rapid expansion of Internet and extreme changes in the routine life of individuals, one can not ignore the extensive influence of service-oriented applications in it. These applications are relying heavily on interactions through the Internet.
Service-oriented architecture empowers software architects to build software without any concerns from the implementation side.
A Software Architect can build an applications relying on Web Services and Service Oriented Architecture. In building a new application, there are always concerns of who is accessing what (e.g. administration panel of an application is supposed to be used by an Administrator only). In this thesis, I have implemented an innovatie approach managing access to an application utilizing SOA.

Handbook of Research on Emerging Rule-Based Languages and Technologies: Open Solutions and Approaches

Selecting an appropriate rules-based engine requires balancing many different, and often, not well-understood properties such as business rules representation methods, rule history and life cycle management, and interoperability with external data sources.

The Handbook of Research on Emerging Rule-Based Languages and Technologies: Open Solutions and Approaches provides a comprehensive collection of state-of-the-art advancements in rule languages, containing methodologies for building rule-based applications, rule interoperability and interchange, and rule-based applications. Developers of rule-based languages and technologies as well as users of these applications will find this Handbook of Research to be a significant resource within the field.


- Ribarić, M., Sheidaei, S., Gašević, D., Milanović, M., Giurca, A., Lukichev, S., Wagner, G., "Modeling of Web Services – using URML, R2ML and model transformations" In Giurca, A., Gašević, D., Taveter, K., (Eds.), Handbook of Research on Emerging Rule-Based Languages and Technologies: Open Solutions and Approaches, 2009.

Alternate source 1 (IGI Global Press) - Alternate Source 2 (Oxygen)

Rule Modeling to Unify Policies and Processes in Service-Oriented Health Information Systems

The service-oriented architecture (SOA) approach offers many promises for the development of high-quality Health Information Systems (HISs) that utilize information such as Electronic Health Records (EHRs) from different parties. However, extreme privacy preservation requirements and the variety of deployment systems make development of HISs particularly challenging. To support HIS developers, we propose effective mechanisms and tools to become part of the development process. We use model-driven engineering to switch the focus of the developers from technologies used for implementing SOA to domain specific concepts of the HISs under study. Our approach relies on a modeling framework based on Web rules, which allows us to represent business processes and policies of service-oriented HISs in a unified rule framework. The framework supports development of tools for a formal analysis of existing services and their policies by using rule-based reasoning engines (e.g., HP's Jena). The tools that we are developing can identify inconsistencies between Web services from different parties, propose solutions for mismatched policies, and verify security and privacy requirements of service-oriented HISs.

-     Gasevic D., Hatala M., Karimifar M.,Kaviani N., Sheidaei S., Rule Modeling to Unify Policies and Processes in Service-Oriented Health Information Systems. Workshop on Model-Based Trustworthy Health Information Systems, in conjunction with, MODELS 2007, Nashville, TN, USA, September 30, 2007.

PDF file -  Alternate Source 1 (Mothis) - Alternate Source 2 (CiteSeer)