Abstract : It is important to assure the security of systems in the course of development. However, lack of requirements analysis method to integrate security functional requirements analysis and validation in upper process often gives a crucial influence to the system dependability. For security requirements, even if extraction of menaces was completely carried out, insufficient countermeasures do not satisfy the security requirements of customers.In this paper, we propose a method to describe security cases based on the security structures and threat analysis. The security structure of the method is decomposed by the Common Criteria (ISO/IEC15408).
https://hal.inria.fr/hal-01480190 Contributor : Hal IfipConnect in order to contact the contributor Submitted on : Wednesday, March 1, 2017 - 11:05:16 AM Last modification on : Thursday, March 2, 2017 - 1:04:25 AM Long-term archiving on: : Tuesday, May 30, 2017 - 2:57:12 PM
Shuichiro Yamamoto, Tomoko Kaneko, Hidehiko Tanaka. A Proposal on Security Case Based on Common Criteria. 1st International Conference on Information and Communication Technology (ICT-EurAsia), Mar 2013, Yogyakarta, Indonesia. pp.331-336, ⟨10.1007/978-3-642-36818-9_36⟩. ⟨hal-01480190⟩