King Saud University Repository >
King Saud University >
Science Colleges >
College of Computer and Information Sciences >
College of Computer and Information Sciences >

Please use this identifier to cite or link to this item: http://hdl.handle.net/123456789/15424

Title: Enforcing Security Policies in Requirements Engineering Using AFUML
Authors: Khaled Alghathbar
Duminda Wijesekera
Keywords: Software requirements, secure software, access and flow control, security
Issue Date: 2008
Publisher: International Journal of Computers and Their Applications
Abstract: AFUML is a framework to specify and verify access and flow control requirements against the access and flow control policies using UML. AFUML specifies the requirements of Use Cases and sequence diagrams, and security policies with stratified Horn clauses. It is based upon our earlier frameworks AuthUML and FlowUML that specify and verify access and flow control policies, respectively. These frameworks and AFUML capture UML’s functional requirements as predicates and apply security policies specified as finite sets of rules using them in order to verify the requirements adherence to policies. This design facilitates the application of any security policyspecifiable as rules to any set of requirements, whilst providing a uniform framework to apply them in unison. This choice modularizes the two aspects of functionality and policy in the forms that are popularly used by their respective communities.
URI: http://hdl.handle.net/123456789/15424
Appears in Collections:College of Computer and Information Sciences

Files in This Item:

File Description SizeFormat
Alghathbar_paper_22.docx12.11 kBMicrosoft Word XMLView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.


DSpace Software Copyright © 2002-2009 MIT and Hewlett-Packard - Feedback