Requirements engineering for trust management: Model, methodology, and reasoning

被引:0
|
作者
Giorgini P. [1 ]
Massacci F. [1 ]
Mylopoulos J. [1 ]
Zannone N. [1 ]
机构
[1] Department of Information and Communication Technology, University of Trento, Trento
来源
International Journal of Information Security | 2006年 / 5卷 / 4期
关键词
Agent-oriented software; Privilege management; Requirements Engineering; Security Engineering; Trust models for business and organizations; Verification and validation of software;
D O I
10.1007/s10207-006-0005-7
中图分类号
学科分类号
摘要
A number of recent proposals aim to incorporate security engineering into mainstream software engineering. Yet, capturing trust and security requirements at an organizational level, as opposed to an IT system level, and mapping these into security and trust management policies is still an open problem. This paper proposes a set of concepts founded on the notions of ownership, permission, and trust and intended for requirements modeling. It also extends Tropos, an agent-oriented software engineering methodology, to support security requirements engineering. These concepts are formalized and are shown to support the automatic verification of security and trust requirements using Datalog. To make the discussion more concrete, we illustrate the proposal with a Health Care case study. © Springer-Verlag 2006.
引用
收藏
页码:257 / 274
页数:17
相关论文
共 50 条
  • [41] A Goal based methodology for Web specific Requirements engineering
    Chawla, Shailey
    Srivastava, Sangeeta
    PROCEEDINGS OF THE 2012 WORLD CONGRESS ON INFORMATION AND COMMUNICATION TECHNOLOGIES, 2012, : 173 - 178
  • [42] [vem:xi:] - A methodology for process based requirements engineering
    Liegl, Philipp
    Schuster, Rainer
    Zapletal, Marco
    Huemer, Christian
    Werthner, Hannes
    Aigner, Michael
    Bernauer, Martin
    Klinger, Bjoem
    Mayr, Michaela
    Mizani, Ramin
    Windisch, Martin
    PROCEEDINGS OF THE 2009 17TH IEEE INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE, 2009, : 193 - +
  • [43] Trust Trade-off Analysis for Security Requirements Engineering
    Elahi, Golnaz
    Yu, Eric
    PROCEEDINGS OF THE 2009 17TH IEEE INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE, 2009, : 243 - +
  • [44] Knowledge meaning and management in requirements engineering
    Edgar Serna, M.
    Oscar Bachiller, S.
    Alexei Serna, A.
    INTERNATIONAL JOURNAL OF INFORMATION MANAGEMENT, 2017, 37 (03) : 155 - 161
  • [45] Requirements engineering for knowledge management in eGovernment
    Bresciani, P
    Donzelli, P
    Forte, A
    KNOWLEDGE MANAGEMENT IN ELECTRONIC GOVERNMENT, 2003, 2645 : 48 - 59
  • [46] Requirements management in an interdisciplinary engineering project
    Hagge, L
    Kreutzkamp, J
    Lappe, K
    7TH WORLD MULTICONFERENCE ON SYSTEMICS, CYBERNETICS AND INFORMATICS, VOL XIII, PROCEEDINGS: SYSTEMICS, CYBERNETICS AND INFORMATICS: TECHNOLOGIES AND APPLICATIONS, 2003, : 221 - 226
  • [47] REQUIREMENTS FOR MANAGEMENT OF AEROSPACE ENGINEERING DATA
    MILLER, RE
    SOUTHALL, JW
    WAHLSTROM, SO
    COMPUTERS & STRUCTURES, 1979, 10 (1-2) : 45 - 52
  • [48] A review on knowledge management in requirements engineering
    Ahmed, Usman
    2018 INTERNATIONAL CONFERENCE ON ENGINEERING & EMERGING TECHNOLOGIES (ICEET), 2018, : 89 - 93
  • [49] ERMM: An engineering requirements management method
    Wang, Nanxin
    JOURNAL OF COMPUTING AND INFORMATION SCIENCE IN ENGINEERING, 2006, 6 (02) : 196 - 199
  • [50] Requirements management: a pillar of concurrent engineering
    Roy, R
    Kerr, C
    Sackett, P
    CONCURRENT ENGINEERING: THE WORLDWIDE ENGINEERING GRID, PROCEEDINGS, 2004, : 639 - 644
12345