Sciweavers

IS
2007

Security Attack Testing (SAT) - testing the security of information systems at design time

13 years 11 months ago
Security Attack Testing (SAT) - testing the security of information systems at design time
For the last few years a considerable number of efforts have been devoted into integrating security issues into information systems development practices. This has led to a number of languages, methods, methodologies and techniques for considering security issues during the developmental stages of an information system. However, these approaches mainly focus on security requirements elicitation, analysis and design issues and neglect testing. This paper presents the Security Attack Testing (SAT) approach, a novel scenario-based approach that tests the security of an information system at the design time. The approach is illustrated with the aid of a real-life case study involving the development of a health and social care information system. r 2007 Elsevier B.V. All rights reserved.
Haralambos Mouratidis, Paolo Giorgini
Added 15 Dec 2010
Updated 15 Dec 2010
Type Journal
Year 2007
Where IS
Authors Haralambos Mouratidis, Paolo Giorgini
Comments (0)