Analyzing information flow control policies in requirements engineering

@article{Alghathbar2004AnalyzingIF,
  title={Analyzing information flow control policies in requirements engineering},
  author={Khaled Alghathbar and Duminda Wijesekera},
  journal={Proceedings. Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, 2004. POLICY 2004.},
  year={2004},
  pages={193-196}
}
Currently security features are implemented and validated during the last phases of the software development life cycle. This practice results in less secure software systems and higher cost of fixing defects software vulnerability. To achieve more secure systems, security features must be considered during the early phases of the software development process. This work presents a high-level methodology that analyzes the information flow requirements and ensures the proper enforcement of… CONTINUE READING