Security requirements engineering for secure business processes

Lecture Notes in Business Information Processing

Volumn 106 LNBIP, Issue , 2012, Pages 77-89

  Paja, Elda ^a   Giorgini, Paolo ^a   Paul, Stéphane ^b   Meland, Per Håkon ^c  

^a UNIVERSITY OF TRENTO   (Italy)

^b THALES RESEARCH AND TECHNOLOGY   (France)

^c SINTEF   (Norway)

Author keywords

BPMN; business process; Security requirements; social commitments

Indexed keywords

AIR TRAFFIC CONTROL; REQUIREMENTS ENGINEERING;

AIR TRAFFIC MANAGEMENT; BPMN; BUSINESS PROCESS; BUSINESS PROCESS MODELLING; ORGANIZATIONAL PERSPECTIVES; SECURITY REQUIREMENTS; SECURITY REQUIREMENTS ENGINEERING; SOCIAL COMMITMENT;

CRYPTOGRAPHY;

EID: 84864647111     PISSN: 18651348     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-642-29231-6_7     Document Type: Conference Paper

References (19)

1. Aguilar-Saven, R.: Business process modelling: Review and framework. International Journal of Production Economics 90(2), 129-149 (2004)
2. Wolter, C., Menzel, M., Meinel, C.: Modelling security goals in business processes. Modellierung 127, 201-216 (2008)
3. Rodr?guez, A., Fernandez-Medina, E., Piattini, M.: A bpmn extension for the modeling of security requirements in business processes. IEICE Transactions on Information and Systems 90(4), 745-752 (2007)
4. Firesmith, D.G.: Security Use Cases. Journal of Object Technology 2(3), 53-64 (2003)
5. Backes, M., Pfitzmann, B., Waidner, M.: Security in Business Process Engineering. In: van der Aalst, W.M.P., ter Hofstede, A.H.M., Weske, M. (eds.) BPM 2003. LNCS, vol. 2678, pp. 168-183. Springer, Heidelberg (2003)
6. Menzel, M., Thomas, I., Meinel, C.: Security requirements specification in serviceoriented business process management. In: 2009 International Conference on Availability, Reliability and Security, pp. 41-48. IEEE (2009)
7. Pavlovski, C., Zou, J.: Non-functional requirements in business process modeling. In: Proceedings of the Fifth Asia-Pacific Conference on Conceptual Modelling, vol. 79, pp. 103-112. Australian Computer Society, Inc. (2008)
8. Cardoso, E., Almeida, J., Guizzardi, R., Guizzardi, G.: A method for eliciting goals for business process models based on non-functional requirements catalogues. International Journal of Information System Modeling and Design (IJISMD) 2(2), 1-18 (2011)
9. Sindre, G., Opdahl, A.: Eliciting security requirements with misuse cases. Requirements Engineering 10(1), 34-44 (2005)
10. Jurjens, J.: UMLsec: Extending UML for Secure Systems Development. In: Jezequel, J.-M., Hussmann, H., Cook, S. (eds.) UML 2002. LNCS, vol. 2460, pp. 412-425. Springer, Heidelberg (2002)
11. Sindre, G.: Mal-Activity Diagrams for Capturing Attacks on Business Processes. In: Sawyer, P., Heymans, P. (eds.) REFSQ 2007. LNCS, vol. 4542, pp. 355-366. Springer, Heidelberg (2007)
12. Greiner, U., Lippe, S., Kahl, T., Ziemann, J., Jakel, F.W.: Designing and implementing cross-organizational business processes-description and application of a modelling framework. Enterprise Interoperability, pp. 137-147 (2007)
13. Singh, M.P.: An Ontology for Commitments in Multiagent Systems: Toward a Unification of Normative Concepts. Artificial Intelligence and Law 7(1), 97-113 (1999)
14. OASIS: Reference Architecture Foundation for Service Oriented Architecture, Version 1.0, Organization for the Advancement of Structured Information Standards (2009)
15. Aniketos: Deliverable 6.1: Initial analysis of the industrial case studies (2011)
16. Yu, E.: Modelling Strategic Relationships for Process Reengineering. PhD thesis, University of Toronto, Canada (1996)
17. Bresciani, P., Perini, A., Giorgini, P., Giunchiglia, F., Mylopoulos, J.: Tropos: An agent-oriented software development methodology. Autonomous Agents and Multi-Agent Systems 8(3), 203-236 (2004)
18. Number:formal/2011-01-03, O.D.: Business process model and notation (bpmn) version 2.0 (2011)
19. Allweyer, T.: BPMN 2.0. BoD (2010)