Risk analysis is traditionally considered a critical activity for the whole software system's lifecycle. Risks are identified by considering technical aspects (e. g., failures of the system, unavailability of services, etc.) and handled by suitable countermeasures through a refined design. This, however, introduces the problem of reconsidering system requirements. In this paper, we propose a goal-oriented approach for analyzing risks during the requirements analysis phase. Risks are analyzed along with stakeholder interests, and then countermeasures are identified and introduced as part of the system's requirements. This work extends the Tropos goal modeling formal framework proposing new concepts, qualitative reasoning techniques, and methodological procedures. The approach is based on a conceptual framework composed of three main layers: assets, events, and treatments. We use "loan origination process" case study to illustrate the proposal, and we present and discuss experimental results obtained from the case study.
Goal-driven risk assessment in requirements engineering
Asnar, Yudistira Dwi Wardhana;Giorgini, Paolo;Mylopoulos, Ioannis
2011-01-01
Abstract
Risk analysis is traditionally considered a critical activity for the whole software system's lifecycle. Risks are identified by considering technical aspects (e. g., failures of the system, unavailability of services, etc.) and handled by suitable countermeasures through a refined design. This, however, introduces the problem of reconsidering system requirements. In this paper, we propose a goal-oriented approach for analyzing risks during the requirements analysis phase. Risks are analyzed along with stakeholder interests, and then countermeasures are identified and introduced as part of the system's requirements. This work extends the Tropos goal modeling formal framework proposing new concepts, qualitative reasoning techniques, and methodological procedures. The approach is based on a conceptual framework composed of three main layers: assets, events, and treatments. We use "loan origination process" case study to illustrate the proposal, and we present and discuss experimental results obtained from the case study.| File | Dimensione | Formato | |
|---|---|---|---|
|
REJ11.pdf
Solo gestori archivio
Tipologia:
Versione editoriale (Publisher’s layout)
Licenza:
Tutti i diritti riservati (All rights reserved)
Dimensione
1.1 MB
Formato
Adobe PDF
|
1.1 MB | Adobe PDF | Visualizza/Apri |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione
