Modeling trust relationships for developing trustworthy information systems

International Journal of Information System Modeling and Design

Volumn 5, Issue 1, 2014, Pages 25-48

  Pavlidis, Michalis ^a   Islam, Shareeful ^a   Mouratidis, Haralambos ^b   Kearney, Paul ^c  

^a UNIVERSITY OF EAST LONDON   (United Kingdom)

^b UNIVERSITY OF BRIGHTON   (United Kingdom)

^c MARTLESHAM HEATH   (United Kingdom)

Author keywords

Control; Model; Process; Requirements; Trust; Trust relationship; Trustworthy information systems

Indexed keywords

COMPUTATIONAL LINGUISTICS; CONTROL; INFORMATION SYSTEMS; MODELING LANGUAGES; MODELS; PROCESSING;

APPROPRIATE MODELS; REQUIREMENTS; SYSTEMATIC PROCESS; TRUST; TRUST AND CONTROLS; TRUST ASSUMPTIONS; TRUST RELATIONSHIP; TRUSTWORTHY INFORMATION SYSTEMS;

PROCESS CONTROL;

EID: 84884492173     PISSN: 19478186     EISSN: 19478194     Source Type: Journal    
DOI: 10.4018/ijismd.2014010102     Document Type: Article

References (27)

1. Axelrod, R. (1984). The evolution of cooperation. New York, NY: Basic Books.
2. Bimrah, K. K. (2009). A framework for modelling trust during information systems development. PhD Thesis, University of East London, UK.
3. Bresciani, P., Perini, A., Giorgini, P., Giunchiglia, F., & Mylopoulos, J. (2004). Tropos: An agent-oriented software development methodology. Autonomous Agents and Multi-Agent Systems, 8(3), 203-236. doi:10.1023/B:AGNT.0000018806.20944.ef
4. Cofta, P. (2007). Trust, complexity and control: Confidence in a convergent world. London, UK: John Wiley and Sons. doi:10.1002/9780470517857
5. Cofta, P., Lacohee, H., & Hodgson, P. (2011). Incorporating social trust into design practices for secure systems. In H. Mouratidis (Ed.), Software engineering for secure systems: Industrial and research perspectives (pp. 260-284). IGI Global.
6. Doherty, F. N., & King, M. (2005). From technical to socio-technical change: Tackling the human and organizational aspects of systems development projects. European Journal of Information Systems, 14, 1-5. doi:10.1057/palgrave.ejis.3000517
7. Giorgini, P., Massaci, F., Mylopoulos, J., & Zanone, N. (2004). Requirements engineering for trust management. International Journal of Information Security, 5(4), 257-274. doi:10.1007/s10207-006-0005-7
8. Houmb, S. H., Islam, S., Knauss, E., Jürjens, J., & Schneider, K. (2010). Eliciting security requirements and tracing them to design: An integration of common criteria, heuristics, and UMLsec. Requirements Engineering Journal, 15(1), 63-93. doi:10.1007/s00766-009-0093-9
9. Islam, S., & Houmb, S. H. (2010a). Integrating risk management activities into requirements engineering. In Proceeding of the 4th IEEE International Conference on Research Challenges in Information Science (RCIS2010), Nice, France.
10. Islam, S., Mouratidis, H., & Jürjens, J. (2011). A framework to support alignment of secure software engineering with legal regulations. Journal of Software and Systems Modeling (SoSyM) [NFPinDSML]. Theme Section on Non-Functional System Properties in Domain-Specific Modeling Languages, 10(3), 369-394.
11. Islam, S., Mouratidis, H., & Wagner, S. (2010b). Towards a framework to elicit and manage security and privacy requirements from laws and regulations. In Proceedings of 16th International Working Conference on Requirements Engineering: Foundation for Software Quality (REFSQ'10). Essen, Germany: Springer-Verlag.
12. Josang, A., Keser, C., & Dimitrakos, T. (2005). Can we manage trust? In Proceedings of the 3rd International Conference of Trust Management (iTrust), Paris, France (pp. 93-107).
13. Lo Presti, S., Butler, M., Leushel, M., & Booth, C. (2006). Holistic trust design of e-services. In R. Song, L. Korba, & G. Yee (Eds.), Trust in e-services: Technologies, practices and challenges (pp. 113-139). IGI Global.
14. Luhmann, N. (1995). Social systems. Stanford University Press.
15. Mollering, G. (2005). The trust/control duality: An integrative perspective on positive expectations of others. International Sociology, 20(3), 283-305. doi:10.1177/0268580905055478
16. Mouratidis, H., & Giorgini, P. (2007). Secure tropos: A security-oriented extension of the tropos methodology. International Journal of Software Engineering and Knowledge Engineering, 17(2), 285-309. doi:10.1142/S0218194007003240
17. OMG. (2008). SPEM 2.0. Retrieved March 2, 2012, from http://www.omg.org/spec/SPEM/2.0
18. Pavlidis, M., Mouratidis, H., & Islam, S. (2012a). Modelling security using trust based concepts. International Journal of Secure Software Engineering (IJSSE). Special Issue on Security Modelling, 3(2), 36-53.
19. Pavlidis, M., Mouratidis, H., & Islam, S. (2012b). Dealing with trust and control: A meta-model for trustworthy information systems development. In Proceedings of the Sixth IEEE International Conference on Research Challenges in Information Science, Valencia, Spain.
20. Pourshahid, A., & Tran, T. (2007). Modelling trust in e-commerce: An approach based on user requirement. In Proceedings of the 9th International Conference on Electronic Commerce (pp. 413-422). New York, NY: ACM.
21. Reyes-Luna, F. L., Zhang, J., Gil-Garcia, R. J., & Cresswell, M. A. (2005). Information systems development as emergent socio-technical change: a practice approach. European Journal of Information Systems, 14, 93-105. doi:10.1057/palgrave. ejis.3000524
22. Uddin, M. G., & Zulekernine, M. (2008). UML-trust: Towards developing trust aware software. In Proceedings of the ACM Symposium on Applied Computing, Brazil (pp. 831-836).
23. UK National Health System. (2002). NHS connecting for health. Retrieved March 2, 2012, from http://www.connectingforhealth.nhs.uk
24. Yu, E. (1997). Towards modelling and reasoning support for early-requirements engineering. In Proceedings of the 3rd IEEE International Symposium on Requirements Engineering (pp. 226-235).
25. Yu, E., & Liu, L. (2001). Modelling trust for system design using the i∗ strategic actors framework. In Proceedings of the International Workshop on Deception Fraud and Trust in Agent Societies (pp. 175-194). London, UK: Springer-Verlag.
26. Yu, E., Liu, L., & Mylopoulos, J. (2007). A social ontology for integrating security and software engineering. In H. Mouratidis, & P. Giorgini (Eds.), Integrating security and software engineering: Advances and future visions (pp. 70-105). IGI Global. doi:10.4018/978-1-59904-937-3.ch163
27. Zarrabi, F., Pavlidis, M., Mouratidis, H., Islam, S., & Preston, D. (2012). A meta-model for legal compliance and trustworthiness of information systems. In Proceedings of the 2nd International Workshop on Information Systems Security Engineering (WISSE 2012) (in Conjunction with CAiSE 2012), Gdask, Poland (pp. 46-60). Springer Lecture Notes in Business Information Processing (LNBIP).