Verification of UML-Based security policy model

Authors:
Sachoun Park;Gihwon Kwon
Affiliations:
Department of Computer Science, Kyonggi University, Suwon-Si, Kyonggi-Do, Korea;Department of Computer Science, Kyonggi University, Suwon-Si, Kyonggi-Do, Korea
Venue:
ICCSA'05 Proceedings of the 2005 international conference on Computational Science and Its Applications - Volume Part III
Year:
2005

Citing 4
Cited 2

A graph-based formalism for RBAC

ACM Transactions on Information and System Security (TISSEC)
Role-Based Access Control

Role-Based Access Control
Formal access control analysis in the software development process

Proceedings of the 2003 ACM workshop on Formal methods in security engineering
Visual specifications of policies and their verification

FASE'03 Proceedings of the 6th international conference on Fundamental approaches to software engineering

Model checking security policy model using both UML static and dynamic diagrams

Proceedings of the 4th international conference on Security of information and networks
PCIEF: a policy conflict identification and evaluation framework

International Journal of Information and Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Since the security policy model plays an important role in any secure information system, its specification has been studied extensively. In particular, UML-based specification has widely used because of its visual characteristics. Although visual specifications are good to write, they are difficult to verify whether some desired properties are hold in a given specification. This paper shows our techniques to verify UML-based specification with a running example.