Originally posted by Nishant Anshul:
...shudnt show them here...but may be in sequence diagram...
These are general guidelines, not specific to
SCEA exams...
Any software components, including those which happen to be concerned with security, should be shown on the component diagram along with dependencies on them from other components.
In sequence diagrams, any business functionality that is required should be shown. If the Use Cases or stated requirements define interactions between classes that happen to include security, they should be shown. Instance data, such as a particular name of a user, role, etc. would not be shown in sequence diagrams whether or not they are security related.

[ October 02, 2003: Message edited by: john prieur ]
Juan Rolando Prieur-Reza, M.S., LSSBB, SCEA, SCBCD, SCWCD, SCJP/1.6, IBM OOAD, SCSA