An architecture for automatically developing secure OLAP applications from models |
| |
| Affiliation: | 1. GSyA Research Group, Dep. of Mathematics, Statistics and Computer Science, Faculty of Sciences, University of Cantabria, Av. De los Castros s/n, 39071 Santander, Spain;2. Alarcos Research Group, Institute of Information Technologies and Systems, Dep. of Information Technologies and Systems, Escuela Superior de Informática, University of Castilla-La Mancha, Paseo de la Universidad, 4, 13071 Ciudad Real, Spain;3. GSyA Research Group, Institute of Information Technologies and Systems, Dep. of Information Technologies and Systems, Escuela Superior de Informática, University of Castilla-La Mancha, Paseo de la Universidad, 4, 13071 Ciudad Real, Spain;4. Lucentia Research Group, Department of Information Languages and Systems, Facultad de Informática, University of Alicante, San Vicente s/n, 03690 Alicante, Spain;1. Department of Government, London School of Economics, Houghton Street, London WC2A 2AE, United Kingdom;2. Department of Methodology, London School of Economics, Houghton Street, London WC2A 2AE, United Kingdom;1. Pharmacy Department, West China Hospital of Sichuan University, Chengdu, Sichuan, 610041, China;2. Engineering Research Center of Medical Information Technology, Ministry of Education, West China Hospital of Sichuan University, Chengdu, Sichuan, 610041, China;3. Department of Cardiology, Sichuan University, Chengdu, Sichuan, 610041, China;4. MOE Key Lab for Neuroinformation, University of Electronic Science and Technology of China, Chengdu, Sichuan, 610054, China;5. Cardiovascular Department, West China Hospital of Sichuan University, Chengdu, Sichuan, 610041, China;1. LISES – Dipartimento di Ingegneria Civile, Chimica, Ambientale e dei Materiali, Alma Mater Studiorum – Università di Bologna, via Terracini n. 28, 40131 Bologna, Italy;2. Dipartimento di Ingegneria Civile e Industriale, Università di Pisa, Largo Lucio Lazzarino, 56126 Pisa, Italy;3. Safety Science Group, TU Delft, Jaffalaan 5, Delft, The Netherlands;4. Engineering Management Department, Research Groups ARGoSS and ANT/OR, University of Antwerp, Prinsstraat 13, 2000 Antwerp, Belgium |
| |
| Abstract: | ContextDecision makers query enterprise information stored in Data Warehouses (DW) by using tools (such as On-Line Analytical Processing (OLAP) tools) which use specific views or cubes from the corporate DW or Data Marts, based on the multidimensional modeling. Since the information managed is critical, security constraints have to be correctly established in order to avoid unauthorized accesses.ObjectiveIn previous work we have defined a Model-Driven based approach for developing a secure DWs repository by following a relational approach. Nevertheless, is also important to define security constraints in the metadata layer that connects the DWs repository with the OLAP tools, that is, over the same multidimensional structures that final users manage. This paper defines a proposal to develop secure OLAP applications and incorporates it into our previous approach.MethodOur proposal is composed of models and transformations. Our models have been defined using the extension capabilities from UML (conceptual model) and extending the OLAP package of CWM with security (logical model). Transformations have been defined by using a graphical notation and implemented into QVT and MOFScript. Finally, this proposal has been evaluated through case studies.ResultsA complete MDA architecture for developing secure OLAP applications. The main contributions of this paper are: improvement of a UML profile for conceptual modeling; definition of a logical metamodel for OLAP applications; and definition and implementation of transformations from conceptual to logical models, and from logical models to the secure implementation into a specific OLAP tool (SSAS).ConclusionOur proposal allows us to develop secure OLAP applications, providing a complete MDA architecture composed of several security models and automatic transformations towards the final secure implementation. Security aspects are early identified and fitted into a most robust solution that provides us a better information assurance and a saving of time in maintenance. |
| |
| Keywords: | Security Confidentiality Model driven development Data warehouse OLAP SQL Server Analysis Services |
| 本文献已被 ScienceDirect 等数据库收录! |
|
