A Tool for Managing Evolving Security Requirements

Bergmann, G [Bergmann, Gábor (informatika), szerző] Méréstechnika és Információs Rendszerek Tanszék (BME / VIK); Massacci, F; Paci, F; Tun, T; Varró, D [Varró, Dániel (Informatika, szof...), szerző] Méréstechnika és Információs Rendszerek Tanszék (BME / VIK); Yu, Y

Angol nyelvű Tudományos Konferenciaközlemény (Egyéb konferenciaközlemény)
    Requirements evolution management is a daunting process. Requirements change continuously making the traceability of requirements hard and the monitoring of requirements unreliable. Moreover, changing requirements might have an impact on the security properties a system design should satisfy: certain security properties that are satis#?#ed before evolution might no longer be valid or new security properties need to be satis#?#ed. This paper presents SeCMER, a tool for requirements evolution management developed in the context of the SecureChange project. The tool supports automatic detection of requirement changes and violation of security properties using change-driven transformations. The tool also supports argumentation analysis to check security properties are preserved by evolution and to identify new security properties that should be taken into account.
    Hivatkozás stílusok: IEEEACMAPAChicagoHarvardCSLMásolásNyomtatás
    2021-05-11 19:36