Security Description Summary

Enables modeling of serivce-oriented architecture

Specurity Aspects

Name

Description

Ensures that authentication constraints hold

Confidentiality

Enables description of properties to ensure the confidentiality of information

Specification Elements

Name

Description

Confidentiality Constraint

Defines security properties for data types in a data transfer object that must be encrypted

Authentication Constraint

Specifies that a specific credential type must be included in a data transfer object

Identification constraint

Defines a set of types that are requred to identify a user

Defines a subject in the system which intends to interact with the system such as a service provider, identity provider or service consumer

Defines objects that are used to impersonate a subject

Security Aspects
- Authentication
  Ensures that authentication constraints hold
  Specification Elements:
  Authentication Constraint
  Objects
  Subject
  Identification constraint
  Threats:
  Information Disclosure
  Spoofing
- Confidentiality
  Enables description of properties to ensure the confidentiality of information
  Specification Elements:
  Confidentiality Constraint
  Identification constraint
  Objects
  Subject
  Threats:
  Information Disclosure
Specification Elements
- Confidentiality Constraint
  Defines security properties for data types in a data transfer object that must be encrypted
  Applies to:
  Data
- Authentication Constraint
  Specifies that a specific credential type must be included in a data transfer object
  Applies to:
  Entity
  Activity
- Identification constraint
  Defines a set of types that are requred to identify a user
  Applies to:
  Entity
  Activity
- Subject
  Defines a subject in the system which intends to interact with the system such as a service provider, identity provider or service consumer
  Applies to:
  Entity
- Objects
  Defines objects that are used to impersonate a subject
  Applies to:
  Entity