Security requirements engineering via commitments

Proceedings - 2011 1st Workshop on Socio-Technical Aspects in Security and Trust, STAST 2011

Volumn , Issue , 2011, Pages 1-8

  Dalpiaz, Fabiano ^a   Paja, Elda ^a   Giorgini, Paolo ^a  

^a UNIVERSITY OF TRENTO   (Italy)

Author keywords

Commitments; Goal models; Security requirements

Indexed keywords

COMMITMENTS; GOAL MODELS; GOAL-ORIENTED MODELLING; ORGANISATIONAL; SECURITY REQUIREMENTS; SECURITY REQUIREMENTS ENGINEERING; SOCIAL COMMITMENT; TECHNICAL SECURITY;

REQUIREMENTS ENGINEERING;

EID: 84868327624     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/STAST.2011.6059249     Document Type: Conference Paper

References (17)

1. D. G. Firesmith, "Security Use Cases," Journal of Object Technology, vol. 2, no. 3, pp. 53-64, 2003. (Pubitemid 38809349)
2. L. Liu, E. Yu, and J. Mylopoulos, "Security and Privacy Requirements Analysis within a Social Setting," in Proceedings of the 11th IEEE International Conference on Requirements Engineering (RE 2003). IEEE Computer Society, 2003, pp. 151-161.
3. P. Giorgini, F. Massacci, and J. Mylopoulos, "Requirement Engineering meets Security: A Case Study on Modelling Secure Electronic Transactions by VISA and Mastercard," in Proceedings of the 22nd International Conference on Conceptual Modeling (ER 2003), ser. LNCS, vol. 2813. Springer, 2003, pp. 263-276.
4. C. Haley, R. Laney, J. Moffett, and B. Nuseibeh, "Security Requirements Engineering: A Framework for Representation and Analysis," IEEE Transactions on Software Engineering, vol. 34, no. 1, pp. 133-153, 2008. (Pubitemid 351343906)
5. A. van Lamsweerde, "Elaborating Security Requirements by Construction of Intentional Anti-Models," in Proceedings of the 26th International Conference on Software Engineering (ICSE 2004). IEEE Computer Society, 2004, pp. 148-157.
6. M. P. Singh, "An Ontology for Commitments in Multiagent Systems: Toward a Unification of Normative Concepts," Artificial Intelligence and Law, vol. 7, no. 1, pp. 97-113, 1999.
7. A. K. Chopra, F. Dalpiaz, P. Giorgini, and J. Mylopoulos, "Modeling and Reasoning about Service-Oriented Applications via Goals and Commitments," in Proceedings of 22nd International Conference on Advanced Information Systems Engineering (CAiSE'10), ser. LNCS, vol. 6051. Springer, 2010, pp. 113-128.
8. P. Devanbu and S. Stubblebine, "Software Engineering for Security: a Roadmap," in Proceedings of the Conference on The Future of Software Engineering (FOSE 2000), 2000, pp. 227-239.
9. E. Dubois and H. Mouratidis, "Guest Editorial: Security Requirements Engineering: Past, Present and Future," Requirements Engineering, vol. 15, no. 1, pp. 1-5, 2010.
10. P. Giorgini, F. Massacci, J. Mylopoulos, and N. Zannone, "Modeling Security Requirements through Ownership, Permission and Delegation," in Proceedings of the 13th IEEE International Conference on Requirements Engineering (RE 2005). IEEE Computer Society, 2005, pp. 167-176. (Pubitemid 41563787)
11. H. Mouratidis and P. Giorgini, "Secure Tropos: A Security-Oriented Extension of the Tropos methodology," International Journal of Software Engineering and Knowledge Engineering, vol. 17, no. 2, pp. 285-309, 2007. (Pubitemid 46782074)
12. J. McDermott and C. Fox, "Using Abuse Case Models for Security Requirements Analysis," in Proceedings of the 15th Annual Computer Security Applications Conference (ACSAC'99). IEEE Computer Society, 1999, pp. 55-64.
13. G. Sindre and A. L. Opdahl, "Eliciting Security Requirements with Misuse Cases," Requirements Engineering, vol. 10, no. 1, pp. 34-44, 2005.
14. G. Elahi and E. Yu, "A Goal Oriented Approach for Modeling and Analyzing Security Trade-offs," in Proceedings of the 26th International Conference on Conceptual modeling (ER 2007), ser. LNCS, vol. 4801, 2007, pp. 375-390.
15. T. D. Breaux and A. I. Antón, "Analyzing Regulatory Rules for Privacy and Security Requirements," IEEE Transactions on Software Engineering, vol. 34, no. 1, pp. 5-20, 2008. (Pubitemid 351343899)
16. P. Giorgini, J. Mylopoulos, and R. Nicchiarelli, Eleonora and Sebastiani, "Reasoning with Goal Models," in Proceedings of the 21st International Conference on Conceptual Modeling (ER 2002), 2002, pp. 167-181.
17. J. D. Moffett and M. S. Sloman, "Delegation of Authority," Integrated Network Management II, pp. 595-606, 1991.