Title :
Representing Security Goals, Policies, and Objects
Author :
Oladimeji, Ebenezer A. ; Supakkul, Sam ; Chung, Lawrence
Author_Institution :
Verizon Commun., Irving, TX
Abstract :
As information security is increasingly becoming critical for today´s computer based systems, there is increasing need for integrating security concerns into the early phases system development processes. As a result, more attention is being drawn to modeling of security goals and their refinements into implementable security policies. With the growing adoption of the UML for object oriented analysis and design, there is need to incorporate security concepts into UML models to offer an attractive approach to engineering security into the system being developed. In this paper, we present a visual approach to unifying goal oriented analysis of security objectives and their associated security policies, with UML functional models. We also show how this representation leads to the early discovery of conflicts and inconsistencies in security policies during analysis. A simplified college department information system is used to illustrate the major concepts of this approach
Keywords :
Unified Modeling Language; formal specification; object-oriented methods; security of data; UML; Unified Modeling Language; college department information system; information security; object oriented design; system development process; Computer architecture; Computer science; Computer security; Design engineering; Educational institutions; Information security; Object oriented modeling; Protection; Systems engineering and theory; Unified modeling language;
Conference_Titel :
Computer and Information Science, 2006 and 2006 1st IEEE/ACIS International Workshop on Component-Based Software Engineering, Software Architecture and Reuse. ICIS-COMSAR 2006. 5th IEEE/ACIS International Conference on
Conference_Location :
Honolulu, HI
Print_ISBN :
0-7695-2613-6
DOI :
10.1109/ICIS-COMSAR.2006.73
