A Formal Metamodel for Problem Frames
MoDELS '08 Proceedings of the 11th international conference on Model Driven Engineering Languages and Systems
Pattern-Based Confidentiality-Preserving Refinement
ESSoS '09 Proceedings of the 1st International Symposium on Engineering Secure Software and Systems
A Foundation for Requirements Analysis of Dependable Software
SAFECOMP '09 Proceedings of the 28th International Conference on Computer Safety, Reliability, and Security
On lightweight mobile phone application certification
Proceedings of the 16th ACM conference on Computer and communications security
A UML profile for requirements analysis of dependable software
SAFECOMP'10 Proceedings of the 29th international conference on Computer safety, reliability, and security
Making pattern- and model-based software development more rigorous
ICFEM'10 Proceedings of the 12th international conference on Formal engineering methods and software engineering
Identification of security requirements in systems of systems by functional security analysis
Architecting dependable systems VII
An approach for selecting implementation strategies of non-functional requirements
Proceedings of the Fourth Asia-Pacific Symposium on Internetware
| Hi-index | 0.00 |
We present a pattern system for security requirements engineering, consisting of security problem frames and concretized security problem frames. These are special kinds of problem frames that serve to structure, characterize, analyze, and finally solve software development problems in the area of software and system security. We equip each frame with formal preconditions and postconditions. The analysis of these conditions results in a pattern system that explicitly shows the dependencies between the different frames. Moreover, we indicate related frames, which are commonly used together with the considered frame. Hence, our approach helps security engineers to avoid omissions and to cover all security requirements that are relevant for a given problem.