Security Requirements Elicitation Using View Points for Online System

Author

Agarwal, Ashish ; Gupta, Daya

Author_Institution

Dept. of Comput. Sci., Delhi Coll. of Eng., Delhi

fYear

2008

fDate

16-18 July 2008

Firstpage

1238

Lastpage

1243

Abstract

Security is of great concern for software engineering community for the development of online systems. To handle all the security issues properly we need to have well defined process for Security engineering and this process should be integrated with software development life cycle (SDLC). For integrating security engineering with SDLC the requirement engineers should have clearly understanding of what security requirements are and he/she is able to distinguish security requirements from various architectural and behavioral constraints. In this paper we go on to define a process for security requirements elicitation presenting techniques for activities like requirements discovery, analysis, prioritization and management. With true security requirements identified as early as possible and systematically identified, Architecture team can choose most appropriate mechanism to implement them.

Keywords

formal specification; formal verification; security of data; online system; requirements engineering; security engineering; security requirements elicitation; software development life cycle; software engineering community; Computer science; Computer security; Costs; Data security; Design engineering; Educational institutions; Maintenance engineering; Programming; Proposals; Software engineering; SDLC;

fLanguage

English

Publisher

ieee

Conference_Titel

Emerging Trends in Engineering and Technology, 2008. ICETET '08. First International Conference on

Conference_Location

Nagpur, Maharashtra

Print_ISBN

978-0-7695-3267-7

Electronic_ISBN

978-0-7695-3267-7

Type

conf

DOI

10.1109/ICETET.2008.91

Filename

4580094