|
|
|
|
A Tool-based Semantic Framework for Security Requirements Specification
|
|
|
|
|
|
|
|
نویسنده
|
Daramola Olawande ,Sindre Guttorm ,Moser Thomas
|
|
منبع
|
journal of universal computer science - 2013 - دوره : 19 - شماره : 13 - صفحه:1940 -1962
|
|
چکیده
|
Attaining high quality in security requirements specification requires first-rate professional expertise, which is scarce. in fact, most organisations do not include core security experts in their software team. this scenario motivates the need for adequate tool support for security requirements specification so that the human requirements analyst can be assisted to specify security requirements of acceptable quality with minimum effort. this paper presents a tool-based semantic framework that uses ontology and requirements boilerplates to facilitate the formulation and specification of security requirements. a two-phased evaluation of the semantic framework suggests that it is usable, leads to reduction of effort, aids the quick discovery of hidden security threats, and improves the quality of security requirements.
|
|
کلیدواژه
|
security requirements ,ontology ,requirements boilerplates ,information extraction ,security threat ,misuse cases
|
|
آدرس
|
Covenant University, Department of Computer and Information Sciences, Nigeria, Norwegian University of Science and Technology (NTNU), Department of Computer and Information Science, Norway, Vienna University of Technology, Christian Doppler Laboratory for Software Engineering Christian Doppler Laboratory for Software EngineeringIntegration for Flexible Automation Systems, Austria
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|