Abstract: Along with the development of the depth and width in applying computers into all kinds of domains,the software's security requirements become more and more complicated.However,the present software system modeling does not deal with security.System security policy and mechanism often become supplement at the end of system development.This paper investigates how to integrate access control requirements into analysis phrase of the development process and how to integrate the modeling of access control policies into the UML modeling of functional requirements.Through the approach of model driven,the paper provides models for security aspects related to the models for functional requirements and investigates how the security models can be generated from the functional models.Finally security access control policies will be generated.