Skip to content

12.15 Access control using group

12.15.1 Description

The Parking Management System of the building is in charge of collecting the number of the available parking slot by the sensor that was set above each slot. The Parking Management System publishes the information on the M2M Platform for vehicles which is destined to the building to acquire. However, the information is only disclosed to vehicles that has proper access rights. The Parking Management System uses a group to organize the vehicles that has the correct access rights.

12.15.2 Source

REQ-2015-0556R01-Use Case access control using group

12.15.3 Actors

  • Parking Management System: The Parking Management System uses the M2M SP to host its parking slot reservation service. The Parking Management System reports the available number of parking slots to the M2M platform for vehicles to acquire.
  • M2M SP: The M2M Service Provider provides M2M platform as well as the connection between the platform, vehicles and the Parking Management System.
  • Vehicle: The Vehicle acquires the available parking slot number of the building and decides if to reserve one from the Parking Management System or choose another nearby parking area.

12.15.4 Pre-conditions

The Parking Management System, the M2M SP and the Vehicles have established business relationship with each other.

Some Vehicles has been authorized by the Parking Management System to read the available parking slot information while some others are not.

The Parking Management System created a group on the platform of the M2M SP to organize all the Vehicles that are authorized.

12.15.5 Triggers

One Vehicle attempts to acquire the available parking slot number from the platform.

12.15.6 Normal Flow

  1. The Vehicle that is destined to the building acquires the available parking slot from the platform.
  2. The platform inspects if the Vehicle is among the group that is authorized to retrieve such information.
  3. The platform finds that the Vehicle is a member of the group.
  4. The platform responds back the information to the Vehicle.

12.15.7 Alternative flow

  1. The Vehicle that is destined to the building acquires the available parking slot from the platform.
  2. The platform inspects if the Vehicle is among the group that is authorized to retrieve such information.
  3. The platform finds that the Vehicle is not a member of the group.
  4. The platform rejects the acquire attempt from the Vehicle.

12.15.8 Post-conditions

None

12.15.9 High Level Illustration

Figure 12.15.9-1 Access control using group

Figure 12.15.9-1 Access control using group

12.15.10 Potential requirements

  1. The M2M System shall support grouping of M2M applications that have the same access control rights towards specific resources, so that access control can be performed by validating if the M2M application is a member of certain group.