• Journal of Internet Computing and Services
    ISSN 2287 - 1136(Online) / ISSN 1598 - 0170 (Print)
    http://jics.or.kr/

An Object-Oriented Analysis and Design Methodology for Security of Web Applications


Kyung-Soo Joo, Jung-Woong Woo, Journal of Internet Computing and Services, Vol. 14, No. 4, pp. 35-42, Aug. 2013
10.7472/jksii.2013.14.4.35, Full Text:
Keywords: Object-Oriented Analysis and Design, Web Application, Security, RBAC, Java EE

Abstract

Nowadays many tasks are performed using the Web. Accordingly, many web-based application systems with various and complicated functions are being requested. In order to develop such web-based application systems efficiently, object-oriented analysis and design methodology is used, and Java EE(Java Platform, Enterprise Edition) technologies are used for its implementation. The security issues have become increasingly important. For such reasons, Java EE provides mechanism related to security but it does not provide interconnections with object-oriented analysis and design methodology for developing web application system. Consequently, since the security method by Java EE mechanism is implemented at the last step only, it is difficult to apply constant security during the whole process of system development from the requirement analysis to implementation. Therefore, this paper suggests an object-oriented analysis and design methodology emphasized in the security for secure web application systems from the requirement analysis to implementation. The object-oriented analysis and design methodology adopts UMLsec, the modeling language with an emphasis on security for the requirement analysis and system analysis & design with regard to security. And for its implementation, RBAC (Role Based Access Control) of servlet from Java EE technologies is used. Also, the object-oriented analysis and design methodology for the secure web application is applied to online banking system in order to prove its effectiveness.


Statistics
Show / Hide Statistics

Statistics (Cumulative Counts from November 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.


Cite this article
[APA Style]
Kyung-Soo Joo and Jung-Woong Woo (2013). An Object-Oriented Analysis and Design Methodology for Security of Web Applications. Journal of Internet Computing and Services, 14(4), 35-42. DOI: 10.7472/jksii.2013.14.4.35.

[IEEE Style]
K. Joo and J. Woo, "An Object-Oriented Analysis and Design Methodology for Security of Web Applications," Journal of Internet Computing and Services, vol. 14, no. 4, pp. 35-42, 2013. DOI: 10.7472/jksii.2013.14.4.35.

[ACM Style]
Kyung-Soo Joo and Jung-Woong Woo. 2013. An Object-Oriented Analysis and Design Methodology for Security of Web Applications. Journal of Internet Computing and Services, 14, 4, (2013), 35-42. DOI: 10.7472/jksii.2013.14.4.35.