An Aspect-Oriented Approach to Security Requirements Analysis

14 years 5 months ago

Download www.cs.ndsu.nodak.edu

This paper presents an aspect-oriented approach to integrated elicitation of functional and security requirements based on use case-driven development. We identify security threats with respect to use cases and adopt threat mitigations for preventing or reducing security threats. To capture crosscutting nature of threats and mitigations, we specify them as aspects that encapsulate pointcuts and advice. A threat (mitigation) pointcut is a collection of join points in use cases at which the use cases are threatened (secured); whereas threat/mitigation advice describes how a threat can become an attack (can be mitigated). Eliciting threats and mitigations as aspects provides a structured way for separating functional and security concerns.

Dianxiang Xu, Vivek Goel, Kendall E. Nygard

Real-time Traffic

COMPSAC 2006 | Security Requirements | Security Threats | Software Engineering | Threat Mitigations |

claim paper

Post Info
More Details (n/a)

Added	10 Jun 2010
Updated	10 Jun 2010
Type	Conference
Year	2006
Where	COMPSAC
Authors	Dianxiang Xu, Vivek Goel, Kendall E. Nygard

Comments (0)

Sciweavers

An Aspect-Oriented Approach to Security Requirements Analysis

COMPSAC 2006 | Security Requirements | Security Threats | Software Engineering | Threat Mitigations |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers