Access Control Specification in UML

View Sample PDF

Author(s): M. Koch (Free University of Berlin, Germany), F. Parisi-Presicce (University of Rome "La Sapienza", Italy)and K. Pauls (Free University of Berlin, Germany)
Copyright: 2008
Pages: 20
Source title: Information Security and Ethics: Concepts, Methodologies, Tools, and Applications
Source Author(s)/Editor(s): Hamid Nemati (The University of North Carolina at Greensboro, USA)
DOI: 10.4018/978-1-59904-937-3.ch098

Keywords: Information Science Reference / Information Security & Privacy / IT Security and Ethics / Security & Forensics

Purchase

View Access Control Specification in UML on the publisher's website for pricing and purchasing information.

Abstract

Security requirements have become an integral part of most modern software systems. In order to produce secure systems, it is necessary to provide software engineers with the appropriate systematic support. This chapter discusses a methodology to integrate the speci?cation of access control policies into UML. The methodology, along with the graph-based formal semantics for the UML access control speci?ca-tion, allows to reason about the coherence of the access control speci?cation. The chapter also presents a procedure to modify policy rules to guarantee the satisfaction of constraints, and shows how to generate access control requirements from UML diagrams. The main concepts in the UML access control speci?cation are illustrated with an example access control model for distributed object systems.

The IRMA Community

Research IRM

Access Control Specification in UML

Purchase

Abstract

Related Content

IRMA Sponsors