Towards Development of Secure Systems Using UMLsec
FASE '01 Proceedings of the 4th International Conference on Fundamental Approaches to Software Engineering
SecureUML: A UML-Based Modeling Language for Model-Driven Security
UML '02 Proceedings of the 5th International Conference on The Unified Modeling Language
Raccoon - An Infrastructure For Managing Access Control in CORBA
Proceedings of the IFIP TC6 / WG6.1 Third International Working Conference on New Developments in Distributed Applications and Interoperable Systems
Foundations for a Graph-Based Approach to the Specification of Access Control Policies
FoSSaCS '01 Proceedings of the 4th International Conference on Foundations of Software Science and Computation Structures
Manageable access control for CORBA
Journal of Computer Security - Special issue on ESORICS 2000
Model driven security: From UML models to access control infrastructures
ACM Transactions on Software Engineering and Methodology (TOSEM)
Secure Systems Development with UML
Secure Systems Development with UML
| Hi-index | 0.00 |
SecTOOL is a case tool for security engineering. It comes as an extension to traditional UML tools, taking into account access control requirements. In particular, it supports the developer in eliciting access control information from UML diagrams for the early phases, starting with requirements analysis and use case diagrams. Access control policies coded in VPL or XACML are generated from the diagrams; vice versa, textually coded policies can be visualized in UML diagrams. Design and usage of the tool are described, emphasizing its platform independence through XACML.