Constructing Authorization Systems Using Assurance Management Framework
Model-driven approach has recently received much attention in developing secure software and systems. In addition, software developers have attempted to employ such an emerging approach in the early stage of software development life cycle. However, security concerns are rarely considered and practiced due to the lack of appropriate systematic mechanisms and tools. In this paper, the authors introduce a multilayered Software Development Life Cycle (SDLC), which is based on an Assurance Management Framework (AMF), focusing on the development of authorization systems.