Threat and Risk-Driven Security Requirements Engineering

Holger Schmidt

首页> 外文期刊>International journal of mobile computing and multimedia communications >Threat and Risk-Driven Security Requirements Engineering

【24h】

Threat and Risk-Driven Security Requirements Engineering

机译：威胁和风险驱动的安全需求工程

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

In this paper, the author aim to present a threat and risk-driven methodology to security requirements en-gineering. The chosen approach has a strong focus on gathering, modeling, and analyzing the environment in which a secure ICT-system to be built is located. The knowledge about the environment comprises threat and risk models. As presented in the paper, this security-relevant knowledge is used to assess the adequacy of security mechanisms, which are then selected to establish security requirements.

机译：在本文中，作者旨在为安全需求工程提出一种威胁和风险驱动的方法。选择的方法非常重视收集，建模和分析要构建安全ICT系统的环境。有关环境的知识包括威胁和风险模型。如本文所述，此与安全性相关的知识用于评估安全性机制的适当性，然后选择安全性机制以建立安全性需求。

著录项

来源
《International journal of mobile computing and multimedia communications》 |2011年第1期|p.35-50|共16页
作者
Holger Schmidt;
展开▼
作者单位

Technical University of Dortmund, Germany;

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
domain knowledge; risk analysis; secure software engineering; security requirements engineering; threat analysis;

机译：领域知识;风险分析;安全软件工程;安全需求工程;威胁分析;

相似文献

外文文献
中文文献
专利

1. Estimating influence of threat using Misuse Case Oriented Quality Requirements (MCOQR) metrics: Security requirements engineering perspective [J] . Chitresh Banerjee, Arpita Banerjee, S.K. Sharma International Journal of Hybrid Intelligent Systems . 2017,第1a2期

机译：使用面向不当案例的质量需求（MCOQR）指标来评估威胁的影响：安全需求工程学的观点
2. Cyber security requirements engineering for low-voltage distribution smart grid architectures using threat modeling [J] . Stefan Marksteiner, Heribert Vallant, Kai Nahrgang Information Security Technical Report . 2019,第Deca期

机译：使用威胁建模的低压配电智能电网架构的网络安全需求工程
3. Effectiveness and performance analysis of model-oriented security requirements engineering to elicit security requirements: a systematic solution for developing secure software systems [J] . Salini P., Kanmani S. International Journal of Information Security . 2016,第3期

机译：面向模型的安全需求工程的有效性和性能分析，以得出安全需求：开发安全软件系统的系统解决方案
4. SPARTA: Security Privacy Architecture Through Risk-Driven Threat Assessment [C] . Laurens Sion, Dimitri Van Landuyt, Koen Yskout, 2018 IEEE International Conference on Software Architecture Companion . 2018

机译：SPARTA：通过风险驱动的威胁评估实现安全和隐私体系结构
5. Exploring Information Technology Security Requirements for Academic Institutions to Reduce Information Security Attacks, Breaches, and Threats. [D] . Misenheimer, Kevin J. 2014

机译：探索学术机构的信息技术安全要求，以减少信息安全攻击，破坏和威胁。
6. Risk-driven security testing using risk analysis with threat modeling approach [O] . Maragathavalli Palanivel, Kanmani Selvadurai -1

机译：使用风险分析和威胁建模方法进行风险驱动的安全测试
7. Risk-driven security testing using risk analysis with threat modeling approach [O] . 2014

机译：使用风险分析和威胁建模方法进行风险驱动的安全测试

Threat and Risk-Driven Security Requirements Engineering

摘要

著录项

相似文献

相关主题

期刊订阅