King Saud University Repository >
King Saud University >
Science Colleges >
College of Computer and Information Sciences >
College of Computer and Information Sciences >

Please use this identifier to cite or link to this item: http://hdl.handle.net/123456789/15428

Title: Incorporating Access Control Policies in Requirements Engineering
Authors: Khaled Alghathbar
Duminda Wijesekera
Keywords: Access Control Policies, Requirement Engineering
Issue Date: 2004
Abstract: To improve software security, security requirements must be considered along with functional requirements during the early development life cycle. Systematic development of security sensitive software requires that there be a sufficiently expressive linguistic extension to model them. We propose an extension to the Unified Modeling Language (UML) to satisfy this need. We extend the UML metamodel with a security policy constraint specification and enforcement module, business tasks and a history log for method calls. Using these extensions we show how dynamic access control requirements of an application can be modeled during the design phase.
URI: http://hdl.handle.net/123456789/15428
Appears in Collections:College of Computer and Information Sciences

Files in This Item:

File Description SizeFormat
Alghathbar_paper_26.docx11.88 kBMicrosoft Word XMLView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.


DSpace Software Copyright © 2002-2009 MIT and Hewlett-Packard - Feedback