“…The author says, "My doctoral research proposes a composable security definition, assurance, and enforcement via a model-driven framework that preserves separation of security concerns from modeling through implementation, and provides mechanisms to compose these concerns into the application while maintaining consistency between design models and code" [Pavlich-Mariscal 2006].This is clearly a development framework, rather than a research framework. …”