安全需求建模:用安全需求工程概念扩展SysML

International journal of applied information systems Pub Date : 2017-12-08 DOI:10.5120/IJAIS2017451731

Ilham Maskani, J. Boutahar, Souhaïl El Ghazi El Houssaïni

{"title":"安全需求建模:用安全需求工程概念扩展SysML","authors":"Ilham Maskani, J. Boutahar, Souhaïl El Ghazi El Houssaïni","doi":"10.5120/IJAIS2017451731","DOIUrl":null,"url":null,"abstract":"In Security Requirements Engineering, many approaches offer different ways to model security requirements. This paper presents a model that can be used in conjunction with any of the former approaches. The model is an extension of SysML requirements diagrams that adds concepts from Security Requirements Engineering: Stakeholder, Goal, Asset and Risk. The proposed model is illustrated by applying it to a telemedicine system.","PeriodicalId":92376,"journal":{"name":"International journal of applied information systems","volume":"25 1","pages":"30-36"},"PeriodicalIF":0.0000,"publicationDate":"2017-12-08","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Modeling Security Requirements: Extending SysML with Security Requirements Engineering Concepts\",\"authors\":\"Ilham Maskani, J. Boutahar, Souhaïl El Ghazi El Houssaïni\",\"doi\":\"10.5120/IJAIS2017451731\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In Security Requirements Engineering, many approaches offer different ways to model security requirements. This paper presents a model that can be used in conjunction with any of the former approaches. The model is an extension of SysML requirements diagrams that adds concepts from Security Requirements Engineering: Stakeholder, Goal, Asset and Risk. The proposed model is illustrated by applying it to a telemedicine system.\",\"PeriodicalId\":92376,\"journal\":{\"name\":\"International journal of applied information systems\",\"volume\":\"25 1\",\"pages\":\"30-36\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-12-08\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International journal of applied information systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.5120/IJAIS2017451731\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International journal of applied information systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.5120/IJAIS2017451731","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

在安全需求工程中，许多方法提供了不同的方法来建模安全需求。本文提出了一个模型，可以与前面的任何一种方法结合使用。该模型是SysML需求图的扩展，它添加了来自安全需求工程的概念:涉众、目标、资产和风险。通过对远程医疗系统的应用，说明了该模型的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

Modeling Security Requirements: Extending SysML with Security Requirements Engineering Concepts

In Security Requirements Engineering, many approaches offer different ways to model security requirements. This paper presents a model that can be used in conjunction with any of the former approaches. The model is an extension of SysML requirements diagrams that adds concepts from Security Requirements Engineering: Stakeholder, Goal, Asset and Risk. The proposed model is illustrated by applying it to a telemedicine system.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International journal of applied information systems

自引率

0.00%

发文量