1University of Tartu (University of Tartu, Ülikooli 18, 50090 TARTU - Estonie)
Abstract : The increasing rates of cyber-attacks have led to the subsequent need to rapidly develop secure information systems (IS). Secure Tropos is an actor and goal-oriented approach to identify security goals and to enable security requirements elicitation. This is achieved by considering system actors, their dependencies and by deriving security constraints that actors need to satisfy. Nevertheless goal-oriented modelling has proven itself to be valid it also contains few shortcomings. One of them is the high granularity of the process, which leads quickly to high complexity models. Security patterns are proven to be reusable solutions that address recurring security problems. In this paper we investigate the integration of a pattern-based security requirements derivation from the Secure Tropos models.
Jolita Ralyté; Sergio España; Óscar Pastor. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. Springer, Lecture Notes in Business Information Processing, LNBIP-235, pp.59-74, 2015, The Practice of Enterprise Modeling. 〈10.1007/978-3-319-25897-3_5〉
https://hal.inria.fr/hal-01442266
Contributeur : Hal Ifip
<>
Soumis le : vendredi 20 janvier 2017 - 15:07:33
Dernière modification le : samedi 21 janvier 2017 - 01:04:34
Document(s) archivé(s) le : vendredi 21 avril 2017 - 15:30:42
Atilio Rrenja, Raimundas Matulevičius. Pattern-Based Security Requirements Derivation from Secure Tropos Models. Jolita Ralyté; Sergio España; Óscar Pastor. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. Springer, Lecture Notes in Business Information Processing, LNBIP-235, pp.59-74, 2015, The Practice of Enterprise Modeling. 〈10.1007/978-3-319-25897-3_5〉. 〈hal-01442266〉
