Security requirements engineering for software systems: Case studies in support of software engineering education

被引:11
|
作者
Mead, Nancy R. [1 ]
Hough, Eric D. [1 ]
机构
[1] Carnegie Mellon Univ, Inst Software Engn, Pittsburgh, PA 15213 USA
来源
19TH CONFERENCE ON SOFTWARE ENGINEERING EDUCATION & TRAINING, PROCEEDINGS | 2006年
关键词
D O I
10.1109/CSEET.2006.30
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Software engineering curricula too often neglect the development of security requirements for software systems. As a consequence, programmers often produce buggy code with weak security measures. This report focuses on three case studies in which graduate students applied a novel security requirements engineering methodology to real-world software development projects. The experiences showed promise for curriculum integration in educating students about the importance of security requirements in software engineering, as well as how to develop such requirements.
引用
收藏
页码:149 / +
页数:2
相关论文
共 50 条
  • [1] Automated Support for Security Requirements Engineering in Software Product Line Domain Engineering
    Mellado, Daniel
    Rodriguez, Jesus
    Fernandez-Medina, Eduardo
    Piattini, Mario
    [J]. 2009 INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY, AND SECURITY (ARES), VOLS 1 AND 2, 2009, : 224 - +
  • [2] Engineering safety and security related requirements for software intensive systems
    Firesmith, Donald G.
    [J]. 29th International Conference on Software Engineering: ICSE 2007 Companion Volume, Proceedings, 2007, : 169 - 169
  • [3] Software Security Requirements Engineering: State of the Art
    Ramachandran, Muthu
    [J]. GLOBAL SECURITY, SAFETY AND SUSTAINABILITY: TOMORROW'S CHALLENGES OF CYBER SECURITY, ICGS3 2015, 2015, 534 : 313 - 322
  • [4] Software requirements engineering: The need for systems engineering and literacy
    Wieringa R.
    [J]. Requirements Engineering, 2001, 6 (2) : 132 - 134
  • [5] Design Requirements in Software and Engineering Systems
    Eleiche, A. M.
    Ahmad, I.
    Elish, M. O.
    [J]. INDUSTRIAL ENGINEERING AND MANAGEMENT SYSTEMS, 2012, 11 (01): : 70 - 81
  • [6] Integrated and iterative systems engineering and software requirements engineering for technical systems
    Holtmann, Joerg
    Bernijazov, Ruslan
    Meyer, Matthias
    Schmelter, David
    Tschirner, Christian
    [J]. JOURNAL OF SOFTWARE-EVOLUTION AND PROCESS, 2016, 28 (09) : 722 - 743
  • [7] Security Requirements Management in Software Product Line Engineering
    Mellado, Daniel
    Fernandez-Medina, Eduardo
    Piattini, Mario
    [J]. E-BUSINESS AND TELECOMMUNICATIONS, 2009, 48 : 250 - +
  • [8] Engineering secure software by modelling privacy and security requirements
    Kreeger, MN
    Duncan, I
    [J]. 39TH ANNUAL 2005 INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY, PROCEEDINGS, 2005, : 37 - 40
  • [9] Security requirements engineering framework for software product lines
    Mellado, Daniel
    Fernandez-Medina, Eduardo
    Piattini, Mario
    [J]. INFORMATION AND SOFTWARE TECHNOLOGY, 2010, 52 (10) : 1094 - 1117
  • [10] Security requirements for critical and regulated software in automotive engineering
    Hick, Sibylle
    [J]. AUTOMOTIVE SECURITY, 2007, 2016 : 211 - 226
12345