The role of sequence diagrams in use/misuse case decomposition for secure systems

Joshua J. Pauli

The role of sequence diagrams in use/misuse case decomposition for secure systems

Joshua J. Pauli

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

Misuse case modeling is a viable option to depict the security requirements together with functional requirements. We use decomposition to investigate the interplay between functional and security requirements, thus creating a complete set of security-centric requirements. Part of the initial decomposition is to identify relationships ("includes" and "extends") among decomposed cases for each case type (use, misuse, mitigation use). Decomposition is conducted for each case type independently and then integrated with the "threatens" and "mitigates" relationships where misuse cases "threaten" use cases and mitigation use cases "mitigate" misuse cases. We use sequence diagrams as an additional tool to show the behaviors of normal usage (use cases), potential threats (misuse cases), and necessary security measures (mitigation use cases). These diagrams are especially useful because the order of execution for each case type can have a direct impact on the security of the system. We create a sequence diagram for each case type to aid in the comprehension. As part of this creation, we developed a process for identifying the elements of each diagram and how to ensure that the elements and messages in the sequence diagram are consistent with what was first documented in the textual description of each case.

Original language	English (US)
Title of host publication	Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006
Pages	153-158
Number of pages	6
State	Published - 2006
Externally published	Yes
Event	10th IASTED International Conference on Software Engineering and Applications, SEA 2006 - Dallas, TX, United States Duration: Nov 13 2006 → Nov 15 2006

Publication series

Name	Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006

Conference

Conference	10th IASTED International Conference on Software Engineering and Applications, SEA 2006
Country/Territory	United States
City	Dallas, TX
Period	11/13/06 → 11/15/06

Keywords

Consistency
Decomposition
Security requirements
Sequence diagrams
Use/misuse cases

ASJC Scopus subject areas

Software

Cite this

The role of sequence diagrams in use/misuse case decomposition for secure systems. / Pauli, Joshua J.
Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006. 2006. p. 153-158 (Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Pauli, JJ 2006, The role of sequence diagrams in use/misuse case decomposition for secure systems. in Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006. Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006, pp. 153-158, 10th IASTED International Conference on Software Engineering and Applications, SEA 2006, Dallas, TX, United States, 11/13/06.

@inproceedings{89f3ac1c651b4a4b8fa9202cda636d96,

title = "The role of sequence diagrams in use/misuse case decomposition for secure systems",

abstract = "Misuse case modeling is a viable option to depict the security requirements together with functional requirements. We use decomposition to investigate the interplay between functional and security requirements, thus creating a complete set of security-centric requirements. Part of the initial decomposition is to identify relationships ({"}includes{"} and {"}extends{"}) among decomposed cases for each case type (use, misuse, mitigation use). Decomposition is conducted for each case type independently and then integrated with the {"}threatens{"} and {"}mitigates{"} relationships where misuse cases {"}threaten{"} use cases and mitigation use cases {"}mitigate{"} misuse cases. We use sequence diagrams as an additional tool to show the behaviors of normal usage (use cases), potential threats (misuse cases), and necessary security measures (mitigation use cases). These diagrams are especially useful because the order of execution for each case type can have a direct impact on the security of the system. We create a sequence diagram for each case type to aid in the comprehension. As part of this creation, we developed a process for identifying the elements of each diagram and how to ensure that the elements and messages in the sequence diagram are consistent with what was first documented in the textual description of each case.",

keywords = "Consistency, Decomposition, Security requirements, Sequence diagrams, Use/misuse cases",

author = "Pauli, \{Joshua J.\}",

year = "2006",

language = "English (US)",

isbn = "9780889865990",

series = "Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006",

pages = "153--158",

booktitle = "Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006",

note = "10th IASTED International Conference on Software Engineering and Applications, SEA 2006 ; Conference date: 13-11-2006 Through 15-11-2006",

}

TY - GEN

T1 - The role of sequence diagrams in use/misuse case decomposition for secure systems

AU - Pauli, Joshua J.

PY - 2006

Y1 - 2006

N2 - Misuse case modeling is a viable option to depict the security requirements together with functional requirements. We use decomposition to investigate the interplay between functional and security requirements, thus creating a complete set of security-centric requirements. Part of the initial decomposition is to identify relationships ("includes" and "extends") among decomposed cases for each case type (use, misuse, mitigation use). Decomposition is conducted for each case type independently and then integrated with the "threatens" and "mitigates" relationships where misuse cases "threaten" use cases and mitigation use cases "mitigate" misuse cases. We use sequence diagrams as an additional tool to show the behaviors of normal usage (use cases), potential threats (misuse cases), and necessary security measures (mitigation use cases). These diagrams are especially useful because the order of execution for each case type can have a direct impact on the security of the system. We create a sequence diagram for each case type to aid in the comprehension. As part of this creation, we developed a process for identifying the elements of each diagram and how to ensure that the elements and messages in the sequence diagram are consistent with what was first documented in the textual description of each case.

AB - Misuse case modeling is a viable option to depict the security requirements together with functional requirements. We use decomposition to investigate the interplay between functional and security requirements, thus creating a complete set of security-centric requirements. Part of the initial decomposition is to identify relationships ("includes" and "extends") among decomposed cases for each case type (use, misuse, mitigation use). Decomposition is conducted for each case type independently and then integrated with the "threatens" and "mitigates" relationships where misuse cases "threaten" use cases and mitigation use cases "mitigate" misuse cases. We use sequence diagrams as an additional tool to show the behaviors of normal usage (use cases), potential threats (misuse cases), and necessary security measures (mitigation use cases). These diagrams are especially useful because the order of execution for each case type can have a direct impact on the security of the system. We create a sequence diagram for each case type to aid in the comprehension. As part of this creation, we developed a process for identifying the elements of each diagram and how to ensure that the elements and messages in the sequence diagram are consistent with what was first documented in the textual description of each case.

KW - Consistency

KW - Decomposition

KW - Security requirements

KW - Sequence diagrams

KW - Use/misuse cases

UR - https://www.scopus.com/pages/publications/38049128938

UR - https://www.scopus.com/pages/publications/38049128938#tab=citedBy

M3 - Conference contribution

AN - SCOPUS:38049128938

SN - 9780889865990

T3 - Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006

SP - 153

EP - 158

BT - Proceedings of the 10th IASTED International Conference on Software Engineering and Applications, SEA 2006

T2 - 10th IASTED International Conference on Software Engineering and Applications, SEA 2006

Y2 - 13 November 2006 through 15 November 2006

ER -

The role of sequence diagrams in use/misuse case decomposition for secure systems

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Other files and links

Fingerprint

Cite this