Modelling Security Requirements in Socio-Technical Systems with STS-Tool

IRIS

Security Requirements Engineering (SRE) deals with the specification of security requirements for the system-to-be starting with the analysis of security issues as soon as in the early requirements phase. STS-ml is an actor- and goal-oriented requirements modelling language for Socio-Technical Systems (STSs), which represents the security needs the stakeholders express as constraints over the interactions between actors. In this paper, we present STS-Tool, the security requirements engineering tool that supports STS-ml. STS-Tool allows for modelling a socio-technical system at a high level of abstraction, expressing constraints (security needs) over the interactions between the actors in the STS, and deriving security requirements in terms of social commitments (promises with contractual validity). It offers multi-view modelling, allowing designers to focus on a different perspective at a time, while promoting modularity.

Modelling Security Requirements in Socio-Technical Systems with STS-Tool

Paja, Elda;Dalpiaz, Fabiano;Poggianella, Mauro;Roberti, Pierluigi;Giorgini, Paolo

2012-01-01

Abstract

Security Requirements Engineering (SRE) deals with the specification of security requirements for the system-to-be starting with the analysis of security issues as soon as in the early requirements phase. STS-ml is an actor- and goal-oriented requirements modelling language for Socio-Technical Systems (STSs), which represents the security needs the stakeholders express as constraints over the interactions between actors. In this paper, we present STS-Tool, the security requirements engineering tool that supports STS-ml. STS-Tool allows for modelling a socio-technical system at a high level of abstraction, expressing constraints (security needs) over the interactions between the actors in the STS, and deriving security requirements in terms of social commitments (promises with contractual validity). It offers multi-view modelling, allowing designers to focus on a different perspective at a time, while promoting modularity.

Scheda breve

Scheda completa

Scheda completa (DC)

	Anno di pubblicazione (Date of publication)
	
				2012
			
	Titolo del volume (Proceedings title)
	
				Proceedings of the CAiSE'12 Forum at the 24th International Conference on Advanced Information Systems Engineering (CAiSE)
			
	Luogo di edizione (Place of publication)
	
				Germany
			
	Casa editrice (Publisher)
	
				CEUR Workshop Proceedings: CEUR-WS.org
			
	Codice Scopus (Scopus Identifier)
	
				2-s2.0-84879853433
			
	Tutti gli autori
	
						Paja, Elda; Dalpiaz, Fabiano; Poggianella, Mauro; Roberti, Pierluigi; Giorgini, Paolo
					
	Appare nelle tipologie:
	
				04.1 Saggio in atti di convegno (Paper in Proceedings)

File in questo prodotto:

File	Dimensione	Formato
caiseforum12.pdf Solo gestori archivio Tipologia: Versione editoriale (Publisher’s layout) Licenza: Tutti i diritti riservati (All rights reserved) Dimensione 475.62 kB Formato Adobe PDF Visualizza/Apri	475.62 kB	Adobe PDF	Visualizza/Apri

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/94564

Citazioni

ND

7

ND

ND

social impact