会议专题

An Analysis for Understanding Software Security Requirement Methodologies

Over the past two decades, large amount of work has been done to improve and assure software quality. However, as software development becomes more complex, distributed, and concurrent, security issues have great influence on software quality. Among those issues, the ones related to development of security requirement are especially critical to the development of software or software-intensive systems. In this paper, we will report our work on reviewing and analyzing different studies on software security requirement development to provide a common understanding for further research and study. Our major analysis findings include: Definition of security requirements in Common Criteria is a widely accepted one among various understandings; Elicitation and analysis are the mainstream activities during security requirement development; and process-oriented and reuse-based methods are gaining their popularities.

Software Security Requirement Requirement Methodology Literature Review and Analysis

Jing Du Ye Yang Qing Wang

Institute of Software, The Chinese Academy of Sciences Graduate University of Chinese Academy of Sc Institute of Software, The Chinese Academy of Sciences

国际会议

2009 Third IEEE International Conference on Secure Integration and Reliability Improvement SSIRI 2009(第三届IEEE安全软件集成及可信性改进国际会议)

上海

英文

141-149

2009-07-08(万方平台首次上网日期,不代表论文的发表时间)