A Tool-based Semantic Framework for Security Requirements Specification

被引:0
|
作者
Daramola, Olawande [1 ]
Sindre, Guttorm [2 ]
Moser, Thomas [3 ]
机构
[1] Covenant Univ, Dept Comp & Informat Sci, Ota, Nigeria
[2] Norwegian Univ Sci & Technol NTNU, Dept Comp & Informat Sci, Trondheim, Norway
[3] Vienna Univ Technol, Christian Doppler Lab Software Engn Integrat Flex, A-1040 Vienna, Austria
来源
JOURNAL OF UNIVERSAL COMPUTER SCIENCE | 2013年 / 19卷 / 13期
关键词
security requirements; ontology; requirements boilerplates; information extraction; security threat; misuse cases;
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Attaining high quality in security requirements specification requires first-rate professional expertise, which is scarce. In fact, most organisations do not include core security experts in their software team. This scenario motivates the need for adequate tool support for security requirements specification so that the human requirements analyst can be assisted to specify security requirements of acceptable quality with minimum effort. This paper presents a tool-based semantic framework that uses ontology and requirements boilerplates to facilitate the formulation and specification of security requirements. A two-phased evaluation of the semantic framework suggests that it is usable, leads to reduction of effort, aids the quick discovery of hidden security threats, and improves the quality of security requirements.
引用
收藏
页码:1940 / 1962
页数:23
相关论文
共 50 条
  • [1] Tool-based specification of visual languages and graphic editors
    Niemann, M
    Bardohl, R
    [J]. TOOLS AND ALGORITHMS FOR THE CONSTRUCTION AND ANALYSIS OF SYSTEMS, 2000, 1785 : 456 - 470
  • [2] RoboComp: A Tool-Based Robotics Framework
    Manso, Luis
    Bachiller, Pilar
    Bustos, Pablo
    Nunez, Pedro
    Cintas, Ramon
    Calderita, Luis
    [J]. SIMULATION, MODELING, AND PROGRAMMING FOR AUTONOMOUS ROBOTS, 2010, 6472 : 251 - 262
  • [3] A FRAMEWORK FOR TOOL-BASED SOFTWARE ARCHITECTURE RECONSTRUCTION
    Kang, Sungwon
    Lee, Seonah
    Lee, Danhyung
    [J]. INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2009, 19 (02) : 283 - 305
  • [4] General Tool-Based Approximation Framework Based on Partial Approximation of Sets
    Csajbok, Zoltan
    Mihalydeak, Tamas
    [J]. ROUGH SETS, FUZZY SETS, DATA MINING AND GRANULAR COMPUTING, RSFDGRC 2011, 2011, 6743 : 52 - 59
  • [5] System security requirements: A framework for early identification, specification and measurement of related software requirements
    Meridji, Kenza
    Al-Sarayreh, Khalid T.
    Abran, Alain
    Trudel, Sylvie
    [J]. COMPUTER STANDARDS & INTERFACES, 2019, 66
  • [6] INTEGRATION REQUIREMENTS FOR TOOL-BASED GENERATION OF INFORMATION-SYSTEM DOCUMENTATION
    VERRIJNSTUART, AA
    [J]. BUSINESS PROCESS RE-ENGINEERING: INFORMATION SYSTEMS OPPORTUNITIES AND CHALLENGES, 1994, 54 : 593 - 602
  • [7] Tool-based argumentation
    Siopi, Kalliopi
    Koleza, Eugenia
    [J]. PROCEEDINGS OF THE TENTH CONGRESS OF THE EUROPEAN SOCIETY FOR RESEARCH IN MATHEMATICS EDUCATION (CERME10), 2017, : 259 - 266
  • [8] DynAMICS: A Tool-Based Method for the Specification and Dynamic Detection of Android Behavioral Code Smells
    Prestat, Dimitri
    Moha, Naouel
    Villemaire, Roger
    Avellaneda, Florent
    [J]. IEEE TRANSACTIONS ON SOFTWARE ENGINEERING, 2024, 50 (04) : 765 - 784
  • [9] An Empirical Investigation on a Tool-Based Boilerplate Technique to Improve Software Requirement Specification Quality
    Anuar, Umairah
    Ahmad, Sabrina
    Emran, Nurul Akmar
    [J]. INTERNATIONAL JOURNAL OF ADVANCED COMPUTER SCIENCE AND APPLICATIONS, 2018, 9 (12) : 397 - 401
  • [10] A Tool-Based Framework to Assess and Challenge the Responsiveness of Emergency Call Centers
    Petitdemange, Eva
    Fontanili, Franck
    Lamine, Elyes
    Lauras, Matthieu
    Okongwu, Uche
    [J]. IEEE TRANSACTIONS ON ENGINEERING MANAGEMENT, 2020, 67 (03) : 568 - 581
12345