DocumentCode
2416403
Title
Improving Quality in Misuse Case Models: A Risk-Based Approach
Author
El-Attar, Mohamed ; Ahmad, Irfan
fYear
2011
fDate
16-18 May 2011
Firstpage
337
Lastpage
342
Abstract
Security is a crucial requirement for many software systems. Misuse case modeling is a technique that allows system designers to inject security considerations within their designs early in the development cycle. This is potentially a much more effective approach to ensuring security than patching an end system with security mechanisms after it was developed. While the notation and syntactical rules of misuse case models are relatively simple, developing high quality misuse case models is not a straightforward task. Modeling practitioners are highly vulnerable to modeling mistakes, creating defective misuse case models that can lead to the development of insecure systems. In this paper, an approach based on antipatterns that attempts to repair defective misuse case models is presented. The misuse case model of an Online Phone Accessories Store subsystem is presented to demonstrate the feasibility of the approach. The results show that applying the technique has improved the overall quality of the misuse case model.
Keywords
Adaptation models; Analytical models; Context; Credit cards; Electronic mail; Security; Software; Antipattern; Misuse Case; OCL; Quality; Use Case;
fLanguage
English
Publisher
ieee
Conference_Titel
Computer and Information Science (ICIS), 2011 IEEE/ACIS 10th International Conference on
Conference_Location
Sanya, China
Print_ISBN
978-1-4577-0141-2
Type
conf
DOI
10.1109/ICIS.2011.59
Filename
6086491
Link To Document