1, * Insaf ACHOUR, 1 Hanen IDOUDI, 3 Samiha AYED
1 ENSI, University of Manouba, 2010, Tunisia
2 University of technology of Troyes, 10420, France
1 Tel.: +33780624304
E-mail: insaf.achour@ensi-uma.tn
Received: 10 July 2024 Revised: 21 December 2024 Accepted: 17 January 2025
Published: 24 March 2025
_____________________________________________________________________________
Abstract: Smart contracts are self-executing computer programs that operate on a blockchain network, designed
to automate transactions without the need for intermediaries [3]. However, the immutability of smart contracts
can lead to significant security risks if vulnerabilities exist at the time of deployment. Therefore, integrating
security, particularly access control, during the design phase is crucial. Model-driven architecture (MDA) aligns
with the principles of security by design, it facilitates the incorporation of security measures from the earliest
stages of design, ensures systematic validation against established standards, and allows for the automatic
generation of code.
This paper presents an MDA approach to model access control for smart contracts and validate these models
using the Smart Contract Security Verification Standard (SCSVS) [1] rules. By leveraging MDA and Model-
Driven Security (MDS) principles, our approach ensures the secure deployment and operation of smart contracts
on the Ethereum blockchain.
Keywords: Smart contract, Model driven architecture, Model driven security, Access control, SCSVS, Security
by design, Ethereum blockchain.
_____________________________________________________________________________
