Add to ORKGAbstract. An important aspect of security requirements is the understanding and listing of the possible threats to the system. Only then can we decide what specific defense mechanisms to use. We show here an approach to list all threats by considering each action in each use case and analyzing how it can be subverted by an internal or external attacker. From this list we can deduce what policies are necessary to prevent or mitigate the threats. These policies can then be used as guidelines for design. The proposed method can include formal design notations for validation and verification.
Caring for security at requirements engineering time is a message that has finally received some att...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...
An important aspect of security requirements is the understanding and listing of the possible threat...
An important aspect of security requirements is the understanding and listing of the possible threat...
In previous work we introduced an approach for finding security requirements based on misuse activit...
We are developing an approach using Jackson's Problem Frames to analyse security problems in or...
The software engineering community recognized the importance of addressing security requirements wit...
As IT-systems become more complex they become more susceptible to suffering of security threats and ...
As IT-systems become more complex they become more susceptible to suffering of security threats and ...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
Misuse case is one of the security requirement elicitation techniques that are easy to use and learn...
We are developing an approach using Jackson's Problem Frames to analyse security problems in order ...
Caring for security at requirements engineering time is a message that has finally received some att...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...
An important aspect of security requirements is the understanding and listing of the possible threat...
An important aspect of security requirements is the understanding and listing of the possible threat...
In previous work we introduced an approach for finding security requirements based on misuse activit...
We are developing an approach using Jackson's Problem Frames to analyse security problems in or...
The software engineering community recognized the importance of addressing security requirements wit...
As IT-systems become more complex they become more susceptible to suffering of security threats and ...
As IT-systems become more complex they become more susceptible to suffering of security threats and ...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
We routinely hear vendors claim that their systems are "secure." However, without knowing what assum...
Misuse case is one of the security requirement elicitation techniques that are easy to use and learn...
We are developing an approach using Jackson's Problem Frames to analyse security problems in order ...
Caring for security at requirements engineering time is a message that has finally received some att...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...
Many security breaches occur because of exploitation of vulnerabilities within the system. Vulnerabi...