Eliciting Security Requirements for Business Processes of Legacy Systems

Abstract : The modernisation of enterprise legacy systems, without compromises in their functionality, is a demanding and time consuming endeavour. To retain the underlying business behaviour during their modernisation, the MARBLETM framework has been developed for the extraction of business process models from their source code. Building on top of that work, in this paper we propose an integrated approach for transforming the extracted legacy process models into Secure Tropos goal models. Such models facilitate the elicitation of security requirements in a high level of abstraction, which are then incorporated back into the process models of the modernised systems as security features. Therefore high level models can be derived from legacy source code with minimal manual intervention, where security can be elaborated by nontechnical stakeholders in alignment with organisational objectives.
Type de document :
Communication dans un congrès
Jolita Ralyté; Sergio España; Óscar Pastor. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. Springer, Lecture Notes in Business Information Processing, LNBIP-235, pp.91-107, 2015, The Practice of Enterprise Modeling. 〈10.1007/978-3-319-25897-3_7〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01442267
Contributeur : Hal Ifip <>
Soumis le : vendredi 20 janvier 2017 - 15:07:36
Dernière modification le : samedi 21 janvier 2017 - 01:04:34
Document(s) archivé(s) le : vendredi 21 avril 2017 - 15:31:41

Fichier

978-3-319-25897-3_7_Chapter.pd...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Nikolaos Argyropoulos, Luis Alcañiz, Haralambos Mouratidis, Andrew Fish, David Rosado, et al.. Eliciting Security Requirements for Business Processes of Legacy Systems. Jolita Ralyté; Sergio España; Óscar Pastor. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. Springer, Lecture Notes in Business Information Processing, LNBIP-235, pp.91-107, 2015, The Practice of Enterprise Modeling. 〈10.1007/978-3-319-25897-3_7〉. 〈hal-01442267〉

Partager

Métriques

Consultations de la notice

40

Téléchargements de fichiers

37