Usability of Security Specification Approaches for UML Design: A Survey
نویسندگان
چکیده
Since it is the de facto language for software specification and design, UML is the target language used by almost all state of the art contributions handling security at specification and design level. However, these contributions differ in the covered security requirements, specification approaches, verification tools, etc. This paper investigates the main approaches adopted for specifying and enforcing security at UML design and surveys the related state of the art. The main contribution of this paper is a discussion of these approaches from usability viewpoint. A set of criteria has been defined and used in this usability discussion. The discussed UML approaches are stereotypes and tagged values, OCL, and behavior diagrams. Extending the UML meta-language or creating new meta-languages for security specification are also covered by this study.
منابع مشابه
Quantitative evaluation of software security: an approach based on UML/SecAM and evidence theory
Quantitative and model-based prediction of security in the architecture design stage facilitates early detection of design faults hence reducing modification costs in subsequent stages of software life cycle. However, an important question arises with respect to the accuracy of input parameters. In practice, security parameters can rarely be estimated accurately due to the lack of sufficient kn...
متن کاملSEIMCHA: a new semantic image CAPTCHA using geometric transformations
As protection of web applications are getting more and more important every day, CAPTCHAs are facing booming attention both by users and designers. Nowadays, it is well accepted that using visual concepts enhance security and usability of CAPTCHAs. There exist few major different ideas for designing image CAPTCHAs. Some methods apply a set of modifications such as rotations to the original imag...
متن کاملآزمون خودکار نرمافزارهای شیگرا با استفاده از موردهای کاربری و ضوابط OCL
Test automation is one of the major areas in software engineering. Test automation can reduce the high cost of software development and at the same time increases the reliability of the testing process. In this paper we present a novel specification based framework for automating test process based on use case scenarios. It receives software specification that defined with UML at design level a...
متن کاملFormalizing UML State Machine Semantics for Automatic Verification–the PAT Approach
UML state machine is widely used in modeling the dynamic behavior of object-oriented designs in industry. But UML state machine specification, which is maintained by Object Management Group(OMG), is documented in natural language instead of formal language. The inherited ambiguity of natural language may introduce inconsistencies to the resulting state machine model. Formalizing UML state machi...
متن کاملFormal Description of the UML Architecture and Extensibility
Since its emergence in 1995, the Unified Modeling Language (UML) has become part of the mainstream of object-oriented software development in a wide range of applications. This paper presents a formal description of UML technologies for visualized specification and modeling of software systems, and analyzes the usability of UML views and diagrams. Requirements and extension of UML capability to...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- Journal of Object Technology
دوره 8 شماره
صفحات -
تاریخ انتشار 2009