• DocumentCode
    3625466
  • Title

    Semiformal Approach to the IT Security Development

  • Author

    Andrzej Bialas

  • Author_Institution
    Institute of Innovations and Information Society, Katowice, Wita Stwosza 7, Poland
  • fYear
    2007
  • fDate
    6/1/2007 12:00:00 AM
  • Firstpage
    3
  • Lastpage
    10
  • Abstract
    The paper concludes the author´s works on the IT security development framework compliant with the common criteria standard. Two basic issues were solved to make this development easier and more effective: the entire development process was better formalized using the UML/OCL approach, and the set of specification means was extended (by defining enhanced generics) thus now the set covers all development stages and is more precise. Moreover, the set of relationships between specification elements was predefined to help developers solve typical security issues. The computer-aided tool, implementing this methodology, has the following elements built in: the simple risk analysis tool, design selfevaluator, reporting and documentation management facilities. The paper presents the volume of works, gives some examples, summarizes the results and gained experiences, and defines the plans of future works.
  • Keywords
    "Unified modeling language","Standards development","Computer security","Information security","Risk analysis","Documentation","Risk management","IEC standards","ISO standards","Technological innovation"
  • Publisher
    ieee
  • Conference_Titel
    Dependability of Computer Systems, 2007. DepCoS-RELCOMEX ´07. 2nd International Conference on
  • Print_ISBN
    0-7695-2850-3
  • Type

    conf

  • DOI
    10.1109/DEPCOS-RELCOMEX.2007.43
  • Filename
    4272885
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3625466