1University of Tartu (University of Tartu, Ülikooli 18, 50090 TARTU - Estonia)
Abstract : The increasing rates of cyber-attacks have led to the subsequent need to rapidly develop secure information systems (IS). Secure Tropos is an actor and goal-oriented approach to identify security goals and to enable security requirements elicitation. This is achieved by considering system actors, their dependencies and by deriving security constraints that actors need to satisfy. Nevertheless goal-oriented modelling has proven itself to be valid it also contains few shortcomings. One of them is the high granularity of the process, which leads quickly to high complexity models. Security patterns are proven to be reusable solutions that address recurring security problems. In this paper we investigate the integration of a pattern-based security requirements derivation from the Secure Tropos models.
https://hal.inria.fr/hal-01442266 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Friday, January 20, 2017 - 3:07:33 PM Last modification on : Saturday, January 21, 2017 - 1:04:34 AM Long-term archiving on: : Friday, April 21, 2017 - 3:30:42 PM