Abstract: Security has been a growing concern for large organizations, especially financial and governmental institutions, as security breaches in the systems they depend on have repeatedly resulted in billions of dollars in losses per year, and this cost is on the rise. A primary reason for these breaches is that the systems in question are socio-technical - a mix of people, processes, technology and infrastructure. However, such systems are designed in a piecemeal rather than a holistic fashion, leaving parts of the system vulnerable. To tackle this problem, a three-realm security requirements framework was proposed to holistically analyse security requirements in different conceptual realms, including social realm (business processes, social actors), a software realm (software applications that support the social realm) and an infrastructure realm (physical and technological infrastructure). In this paper we evaluate this security requirements analysis framework. The evaluation was performed by two graduate students using a large scale case study on a medical emergency response system.
Scheda prodotto non validato
I dati visualizzati non sono stati ancora sottoposti a validazione formale da parte dello Staff di IRIS, ma sono stati ugualmente trasmessi al Sito Docente Cineca (Loginmiur).
|Titolo:||Evaluation of MUSER, a holistic security requirements analysis framework|
|Autori:||Seid, Elias; Robin, Kazi; Li, Tong; Mylopoulos, John|
|Titolo del volume contenente il saggio:||Proceedings - International Conference on Research Challenges in Information Science|
|Luogo di edizione:||Brighton, UK|
|Casa editrice:||IEEE Computer Society|
|Anno di pubblicazione:||2017|
|Codice identificativo Scopus:||2-s2.0-85024492945|
|Citazione:||Evaluation of MUSER, a holistic security requirements analysis framework / Seid, Elias; Robin, Kazi; Li, Tong; Mylopoulos, John. - ELETTRONICO. - :10.1109/RCIS.2017.7956550(2017), pp. 1-12. ((Intervento presentato al convegno 11th IEEE International Conference on Research Challenges in Information Science - RCIS 2017 tenutosi a Brighton, UK nel 2017.|
|Appare nelle tipologie:||04.1 Saggio in atti di convegno (Paper in proceedings)|