Towards a framework to elicit and manage security and privacy requirements from laws and regulations

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 6182 LNCS, Issue , 2010, Pages 255-261

  Islam, Shareeful ^a   Mouratidis, Haralambos ^b   Wagner, Stefan ^a  

^a TECHNICAL UNIVERSITY OF MUNICH   (Germany)

^b UNIVERSITY OF EAST LONDON   (United Kingdom)

Author keywords

evolving legislation; modelling; privacy requirements; Secure Tropos; Security requirements

Indexed keywords

LEGAL DOMAINS; MODELLING LANGUAGE; PRIVACY REQUIREMENTS; SECURITY AND PRIVACY; SECURITY REQUIREMENTS; SENSITIVE INFORMATIONS; SOFTWARE SYSTEMS; SYSTEM REQUIREMENTS;

COMPUTER SOFTWARE SELECTION AND EVALUATION; REQUIREMENTS ENGINEERING;

LAWS AND LEGISLATION;

EID: 77955462130     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-642-14192-8_23     Document Type: Conference Paper

References (11)

1. Antón, A., Earp, J., Reese, A.: Analyzing website privacy requirements using privacy goal taxonomy. In: Proc. of the IEEE Joint International Conference on RE, pp. 23-31 (2002)
2. Siena, J., Mylopoulos, A., Susi, A.: Towards a framework for law-compliant software requirements. In: Proc. of the 31st International Conference on Software Engineering (ICSE 2009), Vancouver, Canada (2009)
3. Bundesdatenschutzgesetz - Federal Data Protection Act (as of November 15, 2006)
4. Mouratidis, H., Giorgini, P.: Secure Tropos: A Security-Oriented Extension of the Tropos Methodology. International Journal of Software Engineering and Knowledge Engineering. © World Scientific Publishing Company
5. Mouratidis, H., Giorgini, P.: Security Attack Testing (SAT) - testing the security of information systems at design time. Inf. Syst. 32(8), 1166-1183 (2007)
6. Information society, Summary of legislation, European Commission
7. Ghanavati, S., Amyot, D., Peyton, L.: A Requirements Management Framework for Privacy Compliance. In: Workshop on Requirements Engineering (WER 2007), Toronto, Canada (2007)
8. Islam, S.: Software development risk management model: a goal driven approach. In: Proceedings of the Doctoral Symposium for ESEC/FSE on Doctoral Symposium, Amsterdam, The Netherlands (2009)
9. Islam, S., Mouratidis, H., Jürjens, J.: A Framework to Support Alignment of Secure Software Engineering with Legal Regulations. Journal of Software and Systems Modeling (SoSyM) Theme Section NFPinDSML (to appear 2010), doi:10.1007/s10270-010-0154-z
10. Breaux, T.D., Antón, A.I.: Analyzing Regulator Rules for privacy and Security Requirements. IEEE Transactions on Software Engineering 34(1) (January-February 2008)
11. Hohfeld, W.N.: Fundamental Legal Conceptions as Applied in Judicial Reasoning. Yale Law of Journal 23(1) (1913)