|
DSpace at King Saud University >
King Saud University >
COLLEGES >
Science Colleges >
College of Computer and Information Sciences >
College of Computer and Information Sciences >
Please use this identifier to cite or link to this item:
http://hdl.handle.net/123456789/15428
|
| Title: | Incorporating Access Control Policies in Requirements Engineering |
| Authors: | Khaled Alghathbar
Duminda Wijesekera |
| Keywords: | Access Control Policies, Requirement Engineering |
| Issue Date: | 2004 |
| Abstract: | To improve software security, security requirements must be considered along with functional requirements during the early development life cycle. Systematic development of security sensitive software requires that there be a sufficiently expressive linguistic extension to model them. We propose an extension to the Unified Modeling Language (UML) to satisfy this need. We extend the UML metamodel with a security policy constraint specification and enforcement module, business tasks and a history log for method calls. Using these extensions we show how dynamic access control requirements of an application can be modeled during the design phase. |
| URI: | http://hdl.handle.net/123456789/15428 |
| Appears in Collections: | College of Computer and Information Sciences
|
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.
|
