Towards a BPMN Security Extension for the Visualization of Cyber Security Requirements

Int. J. Technol. Diffusion Pub Date : 2020-04-01 DOI:10.4018/ijtd.2020040101
M. Chergui, S. Benslimane
{"title":"Towards a BPMN Security Extension for the Visualization of Cyber Security Requirements","authors":"M. Chergui, S. Benslimane","doi":"10.4018/ijtd.2020040101","DOIUrl":null,"url":null,"abstract":"Businessprocessmodelingnotation(BPMN)isawidelyusedbusinessmodelprocess.Theimportance ofsecurityisapparent,buttraditionally,itisconsideredafterthebusinessprocessesdefinition.Thereis aneedforintegratedtoolsandamethodologythatallowsforspecifyingandenforcingcomplianceand securityrequirementsforbusinessprocess-drivenenterprisesystems.Therefore,itisveryimportant tocapturethesecurityrequirementsatconceptualstageinordertoidentifythesecurityneeds.BPMN islackingtheabilitytomodelandpresentsecurityconcepts.Thiswillincreasethevulnerabilityof thesystemandmakethefuturedevelopmentofsecurityforthesystemmoredifficult.Thisarticle proposes a novel extension to BPMN notation based on cyber security ontologies. The authors incorporatevisualconstructsformodelingsecurityrequirements.Inordertoprovideacommonly usableextension,theseenhancementswereimplementedasBPMNmetamodelextension.Theauthors illustratecapabilitiesandbenefitsofextensionwithareal-lifeexample. KEywoRDS BPMN Extension, Business Process, Modeling, Security Requirements","PeriodicalId":208567,"journal":{"name":"Int. J. Technol. Diffusion","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-04-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Int. J. Technol. Diffusion","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.4018/ijtd.2020040101","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 5

Abstract

Businessprocessmodelingnotation(BPMN)isawidelyusedbusinessmodelprocess.Theimportance ofsecurityisapparent,buttraditionally,itisconsideredafterthebusinessprocessesdefinition.Thereis aneedforintegratedtoolsandamethodologythatallowsforspecifyingandenforcingcomplianceand securityrequirementsforbusinessprocess-drivenenterprisesystems.Therefore,itisveryimportant tocapturethesecurityrequirementsatconceptualstageinordertoidentifythesecurityneeds.BPMN islackingtheabilitytomodelandpresentsecurityconcepts.Thiswillincreasethevulnerabilityof thesystemandmakethefuturedevelopmentofsecurityforthesystemmoredifficult.Thisarticle proposes a novel extension to BPMN notation based on cyber security ontologies. The authors incorporatevisualconstructsformodelingsecurityrequirements.Inordertoprovideacommonly usableextension,theseenhancementswereimplementedasBPMNmetamodelextension.Theauthors illustratecapabilitiesandbenefitsofextensionwithareal-lifeexample. KEywoRDS BPMN Extension, Business Process, Modeling, Security Requirements
查看原文
分享 分享
微信好友 朋友圈 QQ好友 复制链接
本刊更多论文
面向网络安全需求可视化的BPMN安全扩展
Businessprocessmodelingnotation(BPMN)isawidelyusedbusinessmodelprocess。Theimportance ofsecurityisapparent,buttraditionally,itisconsideredafterthebusinessprocessesdefinition。Thereis aneedforintegratedtoolsandamethodologythatallowsforspecifyingandenforcingcomplianceand securityrequirementsforbusinessprocess-drivenenterprisesystems。Therefore,itisveryimportant tocapturethesecurityrequirementsatconceptualstageinordertoidentifythesecurityneeds。BPMN islackingtheabilitytomodelandpresentsecurityconcepts。Thiswillincreasethevulnerabilityof thesystemandmakethefuturedevelopmentofsecurityforthesystemmoredifficult。Thisarticle提出了一个基于网络安全本体的bpmnnotation_的新颖扩展。>作者> incorporatevisualconstructsformodelingsecurityrequirements。Inordertoprovideacommonly usableextension,theseenhancementswereimplementedasBPMNmetamodelextension。Theauthors illustratecapabilitiesandbenefitsofextensionwithareal-lifeexample。关键词:BPMN扩展,业务流程,建模,安全需求
本文章由计算机程序翻译,如有差异,请以英文原文为准。
求助全文
约1分钟内获得全文 去求助
来源期刊
Int. J. Technol. Diffusion
Int. J. Technol. Diffusion
自引率
0.00%
发文量
0
期刊最新文献
Management of Service Quality With Involvement of Technological Developments in Organizations Social Networking Sites (SNS): The Factors of User Intention Toward Online Self-Disclosure in the Kingdom of Bahrain Exploring Contextual Factors of User E-Commerce Adoption During Coronavirus Marketing Information and Marketing Intelligence: Generation of Customer Insights Embedded Systems Design Space Exploration Under Security Constraints
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
0
微信
客服QQ
Book学术公众号 扫码关注我们
反馈
×
意见反馈
请填写您的意见或建议
请填写您的手机或邮箱
已复制链接
已复制链接
快去分享给好友吧!
我知道了
×
扫码分享
扫码分享
Book学术官方微信
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术
文献互助 智能选刊 最新文献 互助须知 联系我们:info@booksci.cn
Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。
Copyright © 2023 Book学术 All rights reserved.
ghs 京公网安备 11010802042870号 京ICP备2023020795号-1