Object-Oriented Analysis and Design Methodology for Secure Web Applications -Focused on Role Based Access Control-
In order to develop such web-based application systems efficiently, object-oriented analysis and design methodology is used, and Java EE (Java Platform, Enterprise Edition) technologies are used for its implementation. In addition, security issues have become increasingly important. Consequently, since the security method by Java EE mechanism is implemented at the last step only, it is difficult to apply constant security during the whole process of system development from the requirement analysis to implementation. In this paper, the authors propose an object-oriented analysis and design methodology emphasized in the security for secure web application systems from the requirement analysis to implementation.