Requirements engineering for trust management: Model, methodology, and reasoning

被引:0
|
作者
Giorgini P. [1 ]
Massacci F. [1 ]
Mylopoulos J. [1 ]
Zannone N. [1 ]
机构
[1] Department of Information and Communication Technology, University of Trento, Trento
来源
International Journal of Information Security | 2006年 / 5卷 / 4期
关键词
Agent-oriented software; Privilege management; Requirements Engineering; Security Engineering; Trust models for business and organizations; Verification and validation of software;
D O I
10.1007/s10207-006-0005-7
中图分类号
学科分类号
摘要
A number of recent proposals aim to incorporate security engineering into mainstream software engineering. Yet, capturing trust and security requirements at an organizational level, as opposed to an IT system level, and mapping these into security and trust management policies is still an open problem. This paper proposes a set of concepts founded on the notions of ownership, permission, and trust and intended for requirements modeling. It also extends Tropos, an agent-oriented software engineering methodology, to support security requirements engineering. These concepts are formalized and are shown to support the automatic verification of security and trust requirements using Datalog. To make the discussion more concrete, we illustrate the proposal with a Health Care case study. © Springer-Verlag 2006.
引用
收藏
页码:257 / 274
页数:17
相关论文
共 50 条
  • [31] Requirements Engineering Framework in the case of Warehouse Management Systems
    Kretschmer, Alina
    Wings, Linda
    2023 IEEE 31ST INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE WORKSHOPS, REW, 2023, : 364 - 364
  • [32] Process improvement in requirements management: A method engineering approach
    Brinkkemper, Sjaak
    van de Weerd, Inge
    Saeki, Motoshi
    Versendaal, Johan
    REQUIREMENTS ENGINEERING: FOUNDATION FOR SOFTWARE QUALITY, 2008, 5025 : 6 - +
  • [33] Project Scope Management: A Strategy Oriented to the Requirements Engineering
    Lampa, Igor Luiz
    Contessoto, Allan de Godoi
    Amorim, Anderson Rici
    Donega Zafalon, Geraldo Francisco
    Valencio, Carlos Roberto
    Gratao de Souza, Rogeria Cristiane
    ICEIS: PROCEEDINGS OF THE 19TH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS - VOL 2, 2017, : 370 - 378
  • [34] NON-MONOTONIC REASONING FOR REQUIREMENTS ENGINEERING State Diagrams Driven by Plausible Logic
    Billington, David
    Estivill-Castro, Vladimir
    Hexel, Rene
    Rock, Andrew
    ENASE 2010: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON EVALUATION OF NOVEL APPROACHES TO SOFTWARE ENGINEERING, 2010, : 68 - 77
  • [35] Information Requirements Engineering for Specific Content Management Systems
    Dirgahayu, Teduh
    Setiani, Novi
    Zukhri, Zainudin
    2014 IEEE CONFERENCE ON OPEN SYSTEMS (ICOS), 2014, : 54 - 59
  • [36] Requirements Engineering and Variability Management in DSPLs Domain Engineering: A Systematic Literature Review
    da Silva, Leuson M. P.
    Bezerra, Carla I. M.
    Andrade, Rossana M. C.
    Monteiro, Jose Maria S.
    PROCEEDINGS OF THE 18TH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS, VOL 1 (ICEIS), 2016, : 544 - 551
  • [37] Persona-Scenario-Goal methodology for user-centered requirements engineering
    Aoyama, Mikio
    15TH IEEE INTERNATIONAL REQUIREMENTS ENGINEERING CONFERENCE, PROCEEDINGS, 2007, : 185 - +
  • [38] Model-Based Requirements Engineering: Architecting for System Requirements with Stakeholders in Mind
    Mordecai, Yaniv
    Dori, Dov
    2017 IEEE INTERNATIONAL SYMPOSIUM ON SYSTEMS ENGINEERING (ISSE 2017), 2017, : 143 - 150
  • [39] Model-based requirements engineering for product lines
    Böckle, G
    SOFTWARE PRODUCT LINES: EXPERIENCE AND RESEARCH DIRECTIONS, 2000, 576 : 193 - 203
  • [40] A compositional knowledge level process model of Requirements Engineering
    Herlea, DE
    Jonker, CM
    Treur, J
    Wijngaards, NJE
    INTERNATIONAL JOURNAL OF SOFTWARE ENGINEERING AND KNOWLEDGE ENGINEERING, 2002, 12 (01) : 41 - 75
12345