loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Thuong Doan ; Laurent D. Michel ; Steven A. Demurjian and T. C. Ting

Affiliation: University of Connecticut, United States

Abstract: The unified modeling language (UML) has gained wide acceptance for the design of component-based applications via diagrams (e.g., use-case, class, sequence, activity, etc.) for representing functional requirements. However, UML is lacking in its ability to model security requirements, an increasing need in today's applications. This paper presents and explains techniques that support stateful application design for secure information systems, extending the abilities of UML with role-based access control and mandatory access con- trol. From a security-assurance perspective, we track all of the states of a design to insure that a new state (created from a prior state) is always free of security inconsistencies, with respect to the privileges of users (playing roles) against the application's components. This paper examines the theory of our approach, along with its realization as part of the software process and as incorporated into Borland's UML tool Together Control Center.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.231.222.84

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Doan, T.; D. Michel, L.; A. Demurjian, S. and C. Ting, T. (2005). Stateful Design for Secure Information Systems. In Proceedings of the 3rd International Workshop on Security in Information Systems (ICEIS 2005) - WOSIS; ISBN 972-8865-25-2, SciTePress, pages 277-286. DOI: 10.5220/0002563802770286

@conference{wosis05,
author={Thuong Doan. and Laurent {D. Michel}. and Steven {A. Demurjian}. and T. {C. Ting}.},
title={Stateful Design for Secure Information Systems},
booktitle={Proceedings of the 3rd International Workshop on Security in Information Systems (ICEIS 2005) - WOSIS},
year={2005},
pages={277-286},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002563802770286},
isbn={972-8865-25-2},
}

TY - CONF

JO - Proceedings of the 3rd International Workshop on Security in Information Systems (ICEIS 2005) - WOSIS
TI - Stateful Design for Secure Information Systems
SN - 972-8865-25-2
AU - Doan, T.
AU - D. Michel, L.
AU - A. Demurjian, S.
AU - C. Ting, T.
PY - 2005
SP - 277
EP - 286
DO - 10.5220/0002563802770286
PB - SciTePress