To guarantee the consistency and integrity of dynamic constraints, this paper extends our Constraint based Role Based Access Control (CRBAC) [1] model for the concept of Administrative RBAC (ARBAC) [14] with the specification of dynamic administrative constraints at a higher level of abstraction. The CRBAC uses SECTET-PL, a predicative language for the specification of access rights based on the concepts of RBAC. SECTET-PL is part of the SECTET-framework for model-driven security for B2B workflows.

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Muhammad Alam , Michael Hafner , Ruth Breu, A constraint based role based access control in the SECTET a model-driven approach, Proceedings of the 2006 International Conference on Privacy, Security and Trust: Bridge the Gap Between PST Technologies and Business Services, October 30-November 01, 2006, Markham, Ontario, Canada  [doi>10.1145/1501434.1501451]
	2	M. Alam, M. Hafner, and R. Breu. Modeling Authorization in a SOA based Application Scenario. IASTED Software Engineering 2006, ISBN: 0-88986-572-8.
	3	http://wikipedia.org/.
	4	M. Alam et al. MA Framework for Modeling Restricted Delegation in Service Oriented Architecture. To Appear in Trust Bus 2006.
	5	M. Alam et al. Model Driven Security for Web Services (MDS4WS). INMIC 2004, Digi Obj Id 10.1109/IN-MIC.2004.1492930.
	6	Muhammad Alam , Ruth Breu , Michael Hafner, Modeling permissions in a (U/X)ML world, Proceedings of the First International Conference on Availability, Reliability and Security, p.685-692, April 20-22, 2006  [doi>10.1109/ARES.2006.84]
	7	Michael Hafner , Michael Breur , Ruth Breu , Andrea Nowak, Modelling Inter-organizational Workflow Security in a Peer-to-Peer Environment, Proceedings of the IEEE International Conference on Web Services, p.533-540, July 11-15, 2005  [doi>10.1109/ICWS.2005.83]
	8	M. Hafner et al. "SECTET An Extensible Framework for the Realization of Secure Inter-Organizational Workflows". Accepted for ICEIS 2006.
	9	Model Driven Architecture. http://www.omg.org/mda.
	10	Meta Object Facility: OMG Adapted Specification available at. http://www.omg.org/docs/ptc/04-10-15.pdf.
	11	UML 2.0 OCL Specification. http://www.omg.org/docs/ptc/03-10-14.pdf.
	12	R. Breu et al. Model Driven Security for Inter-Organizational Workflows in e-Government. TCGOV 2005, Proceedings. ISBN 3-540-25016-6.
	13	R. Breu et al. Web service engineering - advancing a new software engineering discipline. ICWE 2005, LNCS 3579.
	14	Ravi Sandhu , Qamar Munawer, The ARBAC99 Model for Administration of Roles, Proceedings of the 15th Annual Computer Security Applications Conference, p.229, December 06-10, 1999
	15	www.sectet.org. Will be on Air by the end of May 2006.