Effective security requirements analysis: HAZOP and use cases

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 3225, Issue , 2004, Pages 416-427

  Srivatanakul, Thitima ^a   Clark, John A ^a   Polack, Fiona ^a  

^a UNIVERSITY OF YORK   (United Kingdom)

Author keywords

[No Author keywords available]

Indexed keywords

SECURITY OF DATA;

FUNCTIONAL REQUIREMENT; HAZOP; NON-FUNCTIONAL REQUIREMENTS; REQUIREMENT ANALYSIS; REQUIREMENTS ANALYSIS; SAFETY AND SECURITIES; SECURITY ANALYSIS; SECURITY REQUIREMENTS;

REQUIREMENTS ENGINEERING;

EID: 35048899397     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-30144-8_35     Document Type: Article

References (14)

1. K. Allemby and T.P. Kelly. Deriving safety requirements using scenarios. In 5th IEEE International Symposium on Requirements Engineering (RE'01). IEEE Computer Society Press, 2001.
2. E. Amoroso. Fundamentals of Computer Security Technology. Prentice-Hall, 1994.
3. B.P. Douglass. Real-time UML (2nd ed.): Developing efficient objects for embedded systems. Addison-Wesley Longman Ltd., 2000.
4. I. Jacobson, M. Christerson, P. Jonsson, and G. Overgaard. Object-Oriented Software Engineering: A Use Case Driven Approach. Addison-Wesley, 1992.
5. T.P. Kelly. Arguing Safety - A Systematic Approach to Managing Safety Cases. PhD thesis, Dept. of Comp. Science, University of York, UK, 1999.
6. D.M. Kienzle and W.A. Wulf. A practical approach to security assessment. In Proc. of the 1997 New Security Paradigms Workshop, England, 1997.
7. J. McDermott. Abuse-case-based assurance arguments. In 17th Annual Computer Security Applications Conference., 2001.
8. A.P. Moore. The JMCIS information flow improvement (JIFI) assurance strategy. Technical Report 500-190, Center for High Assurance Computer Systems Information Technology Division, Naval Research Lab., Washington, D.C., May 1997.
9. UK Ministry of Defence. Defence Standard 00-58: HAZOP Studies on Systems Containing Programmable Electronics. 1996.
10. P. Redmill, M. Chudleigh, and J. Catmur. System Safety: HAZOP and Software HAZOP. John Wiley & Sons, 1999.
11. N.H. Roberts, W.E. Vesely, D.F. Haasl, and F.F. Goldberg. Fault Tree Handbook. System and Reliablity Research Office of U.S. Nuclear Regulatory Commission, Washington, DC., 1981.
12. B. Schneier. Applied Cryptography. John Wiley & Sons, 1996.
13. B. Schneier. Attack Trees. Dr. Dobb's Journal, 1999.
14. G. Sindre and A.L. Opdahl. Eliciting security requirements by misuse cases. In Proc. of TOOLS Pacific 2000, pages 120-131, 2000.