Daramola, Olawande and Sindre, Guttorm and Stålhane, Tor (2012) Pattern-based security requirements specification using ontologies and boilerplates. In: Requirements Patterns (RePa), 2012 IEEE Second International Workshop , 24-24 Sept. 2012, Chicago, IL, USA.
![[img]](http://eprints.covenantuniversity.edu.ng/style/images/fileicons/application_pdf.png) |
PDF
Download (61kB) |
Abstract
The task of specifying and managing security requirements (SR) is a challenging one. Usually SR are often neglected or considered too late - leading to poor design, and cost overruns. Also, there is scarce expertise in managing SR, because most requirements engineering teams do not include security experts, which leads to prevalence of too vague or overly specific SR. In this work, we present an ontology-based approach that uses predefined pattern-based templates - requirements boilerplates - to aid requirements engineers in the formulation of SR. We realized the approach via a prototype tool that enables the formulation of SR from textual misuse case (TMUC) descriptions of security threat scenarios. The results from a preliminary evaluation suggest the viability of the proposed approach, in that the tool was judged as easy to use, supports reuse, and facilitates the formulation of good quality SR.
| Item Type: | Conference or Workshop Item (Lecture) |
|---|---|
| Uncontrolled Keywords: | Security, Ontologies, Semantics, Cognition, Missiles, Software, Computers |
| Subjects: | Q Science > Q Science (General) Q Science > QA Mathematics > QA75 Electronic computers. Computer science |
| Divisions: | Faculty of Engineering, Science and Mathematics > School of Electronics and Computer Science |
| Depositing User: | Mrs Patricia Nwokealisi |
| Date Deposited: | 12 May 2017 08:41 |
| Last Modified: | 12 May 2017 08:41 |
| URI: | http://eprints.covenantuniversity.edu.ng/id/eprint/8116 |
Actions (login required)
 |
View Item |
