I am about to plow through several security-related white papers put out by the OMG, which may answer my query.
I am interested in adequately addressing security within our UML models. Aside from the obvious pre-requisite of simply grasping the multiple layers of security, I’m more interested in notation and idiomatic ways of representing security measures in our models.
Like I said, I suspect the CSIv2 and Security Services V1.7, and other standards I found at OMG and Quadrasi are goingto answer all of this, but if you have dealt with this and have some well formed opinions, we would be very grateful for pointers and advice.
Thanks,
Mike Strong
