@InProceedings{	  basin.ea:automatic:2010,
  abstract	= {In many software applications, users access application
		  data using graphical user interfaces (GUIs). There is an
		  important, but little explored, link between visualization
		  and security: when the application data is protected by an
		  access control policy, the GUI should be aware of this and
		  respect the policy. For example, the GUI should not display
		  options to users for actions that they are not authorized
		  to execute on application data. Taking this idea one step
		  further, the application GUI should not just be
		  security-aware, it should also be smart. For example, the
		  GUI should not display options to users for opening other
		  widgets when these widgets will only display options for
		  actions that the users are not authorized to execute on
		  application data. We establish this link between
		  visualization and security using a model-driven development
		  approach. Namely, we define and implement a
		  many-models-to-model transformation that, given a
		  security-design model and a GUI model, makes the GUI model
		  both security-aware and smart.},
  author	= {David Basin and Manuel Clavel and Marina Egea and
		  Michael Schl{\"a}pfer},
  booktitle	= {nternational Symposium on Engineering Secure Software and
		  Systems (ESSoS 2010)},
  copyright	= {Springer},
  editor	= {Fabio Massacci and Dan Wallach and Nicola Zannone},
  language	= {USenglish},
  month		= 02,
  publisher	= {Springer-Verlag},
  title		= {Automatic Generation of Smart, Security-Aware {GUI} Models},
  year		= 2010
}