Representing Security Specifications in UML State Machine Diagrams | Zendy

Muhammad Umair Khan | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Representing Security Specifications in UML State Machine Diagrams

Author(s) -

Muhammad Umair Khan

Publication year - 2015

Publication title -

procedia computer science

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 0.334

H-Index - 76

ISSN - 1877-0509

DOI - 10.1016/j.procs.2015.07.235

Subject(s) - computer science , unified modeling language , applications of uml , abstract state machines , programming language , uml tool , state (computer science) , class diagram , finite state machine , software engineering , state diagram , software

ecurity specifications are controls and constraints on the behavior of the software and can be used to develop more secure software from the beginning. Many specification languages have been proposed to represent security specifications. However, all these specification languages are at a higher level of abstraction and can only be used to represent overall business-level design decisions. Such specifications provide guidance to the developers but do not lay out the details of the dynamic behavior that has to be implemented during the coding phase. In this paper, we propose to use UML state machine diagrams to represent detailed dynamic behavior of design-level security specifications. We argue that these behaviors when used by the developer for implementation will enable them to avoid crucial security vulnerabilities

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research