Title :
Secure and Usable Requirements Engineering
Author :
Romero-Mariona, Jose
Author_Institution :
Donald Bren Sch. of Inf. & Comput. Sci., Univ. of California, Irvine, CA, USA
Abstract :
Software security is an increasingly important aspect of computing; however, it is still addressed as an after thought in too many development efforts. While a variety of approaches have been proposed for security requirements engineering, we find many still lacking with respect to their usability. In this proposal I describe my work in the area of security requirements engineering. SURE, Secure and Usable Requirements Engineering, is a new approach that supports non-security experts in order to specify security requirements from which testing artifacts can be derived. In addition, ASSURE, Automated Support for Secure and Usable Requirements Engineering, a system that implements the SURE technique is presented.
Keywords :
formal specification; formal verification; security of data; systems analysis; ASSURE; SURE; automated support secure and usable requirements engineering; secure and usable requirements engineering; software security; software usability; Availability; Computer security; Information security; Proposals; Protection; Robustness; Software engineering; Systems engineering and theory; Testing; Usability; requirements; security; specifications; testing; usability;
Conference_Titel :
Automated Software Engineering, 2009. ASE '09. 24th IEEE/ACM International Conference on
Conference_Location :
Auckland
Print_ISBN :
978-1-4244-5259-0
Electronic_ISBN :
1938-4300
DOI :
10.1109/ASE.2009.81
