• DocumentCode
    2346095
  • Title

    AVT Vector: A Quantitative Security Requirements Evaluation Approach Based on Assets, Vulnerabilities and Trustworthiness of Environment

  • Author

    Long, Teng ; Liu, Lin ; Yu, Yijun ; Jin, Zhi

  • Author_Institution
    Sch. of Software, Tsinghua Univ., Tsinghua, China
  • fYear
    2009
  • fDate
    Aug. 31 2009-Sept. 4 2009
  • Firstpage
    377
  • Lastpage
    378
  • Abstract
    Security requirements analysis is gaining growing attention as new vulnerabilities and threats are emerging on daily basis, the systematic evaluation of security requirements is of utmost importance among the various decisions to be made related to security. This short contribution proposes using a 3-dimensional vector for quantitative evaluation of security requirements, which takes into account the importance of assets to be protected, the vulnerability of the system and the trustworthiness of environment.
  • Keywords
    security of data; 3-dimensional vector; assets-vulnerabilities-trustworthiness vector; quantitative security requirement evaluation; systematic evaluation; Availability; Computer bugs; Computer science; Computer security; Information security; Investments; Protection; Robustness; Software safety; Software systems;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Requirements Engineering Conference, 2009. RE '09. 17th IEEE International
  • Conference_Location
    Atlanta, GA
  • ISSN
    1090-705X
  • Print_ISBN
    978-0-7695-3761-0
  • Type

    conf

  • DOI
    10.1109/RE.2009.53
  • Filename
    5328476
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2346095