Combining IID with BDD to Enhance the Critical Quality of Security Functional Requirements

2014 Ninth International Conference on Broadband and Wireless Computing, Communication and Applications Pub Date : 2014-11-08 DOI:10.1109/BWCCA.2014.78

Sen-Tarng Lai, Fang-Yie Leu, W. Chu

{"title":"Combining IID with BDD to Enhance the Critical Quality of Security Functional Requirements","authors":"Sen-Tarng Lai, Fang-Yie Leu, W. Chu","doi":"10.1109/BWCCA.2014.78","DOIUrl":null,"url":null,"abstract":"In software system, functional requirements are primary system requirements. Client cannot explicitly depicted security requirements and the development team is hard to understand security requirements, makes security requirements difficult to specific implant software system. In software system development process, security requirements often neglected and ignored. However, the cost of correcting security flaws in maintenance phase is over 100 times in requirements phase. Can't effectively improve the system security, enterprises loss is bound to continue to expand. In order to enhance the security of software system, this paper combines the popular software development methodology IID (Interactive and Incremental Development) with BDD (Behavior Driven Development), institutionalized requires functional requirements must be integrated into security requirements. And, using BDD process features to evaluate the major quality of security functional requirements. Timely identifies and modifies the quality defects of security functional requirements item, effectively enhance the security of software systems.","PeriodicalId":195099,"journal":{"name":"2014 Ninth International Conference on Broadband and Wireless Computing, Communication and Applications","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 Ninth International Conference on Broadband and Wireless Computing, Communication and Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/BWCCA.2014.78","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

In software system, functional requirements are primary system requirements. Client cannot explicitly depicted security requirements and the development team is hard to understand security requirements, makes security requirements difficult to specific implant software system. In software system development process, security requirements often neglected and ignored. However, the cost of correcting security flaws in maintenance phase is over 100 times in requirements phase. Can't effectively improve the system security, enterprises loss is bound to continue to expand. In order to enhance the security of software system, this paper combines the popular software development methodology IID (Interactive and Incremental Development) with BDD (Behavior Driven Development), institutionalized requires functional requirements must be integrated into security requirements. And, using BDD process features to evaluate the major quality of security functional requirements. Timely identifies and modifies the quality defects of security functional requirements item, effectively enhance the security of software systems.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

IID与BDD相结合，提高安全功能需求的关键质量

在软件系统中，功能需求是主要的系统需求。客户端无法明确描述安全需求，开发团队难以理解安全需求，使得安全需求难以具体植入软件系统。在软件系统开发过程中，安全需求往往被忽视和忽视。然而，在维护阶段纠正安全缺陷的成本是需求阶段的100倍以上。不能有效提高系统的安全性，企业的损失势必会不断扩大。为了提高软件系统的安全性，本文将流行的软件开发方法IID(交互式增量开发)与BDD(行为驱动开发)相结合，制度化地要求功能需求必须集成到安全性需求中。并且，使用BDD过程特性来评估安全功能需求的主要质量。及时识别和修改安全功能需求项的质量缺陷，有效提升软件系统的安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2014 Ninth International Conference on Broadband and Wireless Computing, Communication and Applications

自引率

0.00%

发文量